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1.0 INTRODUCTION 

This is Part III of the three-part COINS Long-Range Plan. 
Part I presented ‘he COINS debe seteds concepts as they are today, 
and as they are projected. to be in 1985 and in 1990. Part II pre- 
sented the COINS architecture in a similar fashion—as it is today, 
and projected to 1985 and 1990. Parts I and II of the plan were 
developed to provide the reader with an understanding of how the 
COINS PMO perceived the evolution of COINS during the 1980's, and 
to provide a basis and direction for the COINS PMO. planning, program- 
ming and budgeting activities. Part III, Technical Support Plan, of 


the COINS Long-Range Plan presents the program plans, resources, and 


. schedules to develop and maintain COINS for the current fiscal year 


and five years beyond. 


1.1 Purpose 
The purposes of Part III of the COINS Long-Range Plan are: 


a. To support the COINS PMO planning, programming, and 

.. budgeting activities and COINS-related planning, pro- 
gramming, and budgeting activities of the other 
organizations participating in COINS. 


b. To describe, for the COINS community and other inter- 
ested organizations, the development and acquisition 
of new and improved COINS capabilities. 


¢. To provide the planned development, procurement, and 
implementation schedules for use by COINS participating 
organizations in scheduling their planned development, 
procurement, and implementation actions that may be 
impacted by or impact on COINS. 


d. To provice resource estimates to development and 
maintain COINS. 
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1.2. Organization 
- Section 2 of Part III provides a description of COINS. It 


_ contains much of the introductory material of Parts I and II of the 


tong Range Plan and is included here to provide the readers who had 
not read either Part I or Part II of the COINS Long-Range Plan with 
a basic understanding of COINS. 

- Section 3 presents major factors that were considered in devel- 
oping the TSP. Section 4 is a summary of the planning activities 
and resources included in Annexes A, B, C, and D. Finally, the 
Annexes provide the Technical Support Plans. 


Annex A ~ COINS Network and Project Management 


Annex B ~ COINS Network Resources 
‘Annex C = COINS Network Development 


Annex D - COINS Network Security 
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> 2.0 BACKGROUND - : 2 bet 


i 
| 
| 
This section presents the history of COINS seenionaent since | - a 
1965, and projects its further development through the end of this | 
decade. | 
The objective of COINS is to serve the analysts of the intelli- | 
gence community in retrieval and analysis of intelligence data. It 
is operational as a communications medium between several of che data 
processing centers of the community and is in increasing use for: data i 
retrieval. from these centers. | 
However, its utility as a service to intelligence analysts is | 
limited in many ways. Much information which should be available via . | | 
COINS is not available. Procedures for access are complex and there | 
€ ‘ are mangas Pevaat atedsaites to be learned. Data processing services 
are very sparse. 


The COINS plan for development during the 1980's is to: 


‘@ Widen the base of the network by increasing its data 
resources 


e Simplify, for the analyst, the procedures of retrieving 
data : 


e Provide assistance in processing of data once it is 
retrieved 


e Provide network-wide user services such as electronic 
mail and teleconferencing 


This initial section presents the history of COINS, and describes 
the environment which bounds its development. The network originated 


in 1965 as an experimental, store-and-forward network, and became 
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operational in 1973. In 1974 it began a process to upgrade from a 
pioze Lana eeecad to a sacmacceuiectes a ae “the cacternaecuee . 
network was Ageiared operational as COINS II in 1977. Since then it | 
has continued to evolve in scope and in service. 

The COINS environment is the community of analysts, the data 
base systems extant and projected, the methods and procedures which 
COINS must adapt to, and other DoD networks with which COINS will 
interact. | 

Figure 1 presents a general description of COINS as a set of 
functional rings: | 


e The Communications Ring is the basic data transmission 
facility. 


e. The Switching Ring contains the COINS packet switching 


€ nodes. —_ 


@e The Access Ring contains the devices which attach 
. terminals and data processing systems to COINS, and 
through which COINS connects to other networks. 
e The Service Ring contains the COINS host systems, 
processing systems and services, and terminals 
including those in other networks. 
Each of the preceding rings contains a set of communications or ser- 
vice functions, supported by an inner ring, and supporting an outer 
ring. z =, 


@ The User Ring. Outside the service ring are the users 
of COINS--the reason the four inner rings exist. 
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2.1 Current Status oo _ 7 _ _ me *h ce a 


a ~, Siz computer systems are directly connected to the COINS I 


network--NSA RYE/TIPS, NPIC NDS, NSA SOLIS, the COINS PMO TAS, che 
COINS PMO Network Service Host, and the PACOM TAS (via the ARPANET 
Gateway). Only the TAS-based systems can access SOLIS. | 

NSA RYE/TIPS, DIA DIAOLS, the processors at ADCOM and PACAF, 
and, in the future, the Network Service Host, function as both server 
and user hosts, i.e., they provide information retrieval services for i: 
COINS users, as. well as Link their own ese’ tertinala to COINS, SOLIS 
acts only as a server-host. The COINS PMO TAS, the PACOM TAS, the 
PACOM IDHSC SWITCH, and the processors at SAC and IPAC support user 
chenanat connections to COINS but provide no services to COINS users. 

| NSA RYE/TIPS user terminals cannot interact with remote inter- 
active hosts. The COINS II accessible files of RYE/TIPS will be in- 
stalled on the interactive PROJECTOR when they are to be moved to 
WINDMILL —— a Burroughs 7700 dual processor currently housing 
SOLIS. 

The NPIC New Data System (NDS) is connected to COINS by an 
adaptation of the TAS, called the Network Access ee (NAS). Via 
the NAS, local NPIC terminals are currently able to work in batch 7 
mode with other COINS II hosts as if they were TAS terminals, During 
the first year of NDS operation with COINS, COINS II users will access 
NDS in batch mode only, although interactive Sabaniidts eaisees By 
the end of calendar year 1980 NPIC will offer both batch and inter- 


active services to COINS. 
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Network services between COINS and IDHSC continue to be Limited 


to batch transactions since the protocols and gateway software to 


handle interactive connections between COINS II and IDHSC have not 
been defined. 


2.2 Future Development| 


.To date, development of COINS has concentrated on communications 


systems in order to provide an instrument for remote access from a 


‘single point of entry (terminal) to intelligence data at several 


centers of storage (data base systems). The access capability that 


now exists is constrained in some ways: - 


e Some of the community data bases are not accessible 
from COINS terminals. Their host computers are not 
attached to COINS, or to a network which can be ae 
reached via COINS, or their security and need-to-know ek ee 
controls cannot be handled by COINS. Bag 


e Access from some points is limited by the interface 
between user and COINS. For example, an analyst at 
an IDHSC terminal cannot access the SOLIS system. 
The necessary interactive protocols cannot be propa~ 
gated through the gateway between IDHSC and COINS, 
and in many instances the analyst does not have the 
proper remote terminal. 


Renoval of these constraints is a matter of resources and time. 
Most of them will disappear as older host systems are replaced, or 
as the present DoD network environment .evolves. 

Beyond mere access tc data, the COINS ‘users need help in other 
areas: 
e Learning procedures for data retrieval. The COINS 
usixr is turrently required to know where data is, 


and for each source of data, the language which must 
be used to extract from it. 
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e Manipulation and formatting of data once extracted 


from the file is done by the host computer on which 
the file is stored. Having retrieved data, the 
analyst must then resort to pencil and paper to 
reduce it. to a form appropriate for the intended 


purpose. 


Present COINS provides little help in solution of these problems. 


It is projected that development of COINS during the 1980's will 


concentrate on ene problem of regvaet ts data formats and access 


languages. Some aspects of this problem are: 


Multiple Retrieval. Languages. In general, each data 
base is accessed by a language unique to that data 


base. The user may require information from several 
data bases, and is thus faced with the need to learn 
more than one language. 


Host System Autonomy. COINS hosts are designed and 
operated to serve local needs. COINS has low priority 
relative to these local needs, and must work out methods 


of adapting to chem 


Lack of Data Standards. There is no common methodology 
for data definition. Data is categorized, structured, 
and named in many different ways, depending upon who 
"owns" it. To perform a complete search, the user 
must know all of the. terminologies by which day may be 
referenced. 


Community Turnover. The user population is dynamic. 


New users are constantly entering the community. 


There is a continuous and massive problem of training 
them in the nature of resources available, and the 
methods for their exploitation. 


Security. There is no system for support of multi- 
level security. Access via COINS is restricted to 
the SI/TK level. Most of the potential intelligence 
community users are thus excluded from COINS. 


Undefined Network Command Language. There is no agreed 
upon set of commands, or command "language", for ini- 
tiating and controlling network functions. 
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"These problems have been under attack for some time. By the 


.mid-1980's useful techniques for their solution should be implement — 


’ able. 


__The second problem, provision of data manipulation services for 
the user, requires a better understanding of the analysts job and 
what tools would be helpful in performing it. Studies are being made. 
By the latter half of the decade COINS. should be in a position to 
support the user with hardware and-eoetware which assists in analysis 
of data: once it has been retrieved. 

Development of functions within COINS will be influenced by 
expected changes in the COINS environment, among which may be cited: 


e Cost of Components. Current equipment costs indicate 

. that centralized processing for many functions is 

' economical. However, if these costs continue to fall, 

‘it may become efficient to distribute function execu- 
tion throughout the network. ~ 


e Advances in Security Methodology. COINS has been 
requested by ASD(C“I) to cooperate with DCA in 
development of a community standard, Secure Network 
Front-End. Project BLACKER is under development. 

The Kernelized Secure Operating System (KSOS) is also 
under development. These efforts may have significant 
impact on the methodology of access to COINS. 


@ Projected Increase in Traffic. Present Access Systems 
have fairly low capacity with respect to number of 
physical attachments which can be supported ("ports") 
and throughput capacity. The projected traffic far 
exceeds these limitations. Increase of Access System 
capacity to meet traffic demand may force complete 
redesign of Access System structure and function as 
well as influence the future designs of the host sys- 
tems themselves. 
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® 


The COINS environment: includes other networks to which COINS 
will be connected. 


U.S. intelligence agencies in the Washington, D.C. area. 


+ a 


Network Access via Terminals. Most of the present COINS 
terminals are attached to hasts, and access the network 


_ through hosts. During the 1980's the trend will be to 
terminals which access hosts via a network. There will 


be a requirement for many Terminal Access Syerens of 
very high capacity. 


Terminal Evolution. Many of the community systems 
presently support only line-oriented, hardcopy termi- 
nals. Newer systems employ CRT terminals, and increas- 
ingly, "intelligent" terminals. 


This trend to increasing terminal functionality will 
obviously impact the methodology of network access. 


a neces spain nT 


COINS itself is designed and operated to support 


It either 


is or will be connected via "gateways" to a number of other networks; 


i.e.: 


Development of these projected internetwork connections will 


ARPANET 
PLATFORM 
IDHSC 
AUTODIN II 


TALIPS 


be governed by changes in the Defense Department network structure: 
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AUTODIN II will become operational as the DoD long- 
haul communications facility. 


The present ARPANET will be significantly reduced in 
size and retained as a research facility. Many of 


its present hosts will become hosts of AUTODIN II. 
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(. . 7 e The DODIIS hosts within the Washington, D.C, area will 
. become hosts of COINS. DODIIS hosts outside of Washington 
will use AUTODIN II. , ; 
The impact of these changes on COINS development will be manifold; 
e The COINS network will be expanded to support Washington, 
D.C. DODIIS hosts; specifically at DIA, NMIC, AFIS, and 
NAVINTCOM. 


e New protocols such as File Transfer and Teleconferencing 
will be required. 


e COINS may be required. to provide DODIIS interconnectivity 
during the transition of IDHSC to AUTODIN IT. 


e The TETRAHEDRON communications system, which is the 
base of the COINS subnet, may require expansion to 
include Andrews AFB, Suitland, Maryland and Fort Detrick, 
Maryland, and to interface with AUTODIN II. 


e Increased traffic against the more heavily used COINS 
hosts must be anticipated and provided for. 


S : e@ COINS current use of ARPANET as a carrier to distant 
q , users will be replaced by AUTODIN II. ve 


e COINS itself may be a carrier between facilities in 
adjacent networks. 


. The COINS network, and each of the five networks to which COINS 
will be connected, is providing operational service to a unique 
family of users. Each network, including COINS, has its own set of 
established protocols and services. These are not easily changed 
without considerable cost as well as user hardship. It is planned : 
that connection of COINS to another network will not: 


e Result in disruption of service to users in either 
network 


e@ Result in major changes in protocols and services 
in either network 


C . 
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(- .  @ =Result in major software. reprogramming action in , bai! a 
either network , " 


2.3 Background Summary 


The COINS network is being developed as a tool for cooperative 


effort in intelligence data processing. It is a vehicle for support- 
ing the individual efforts.of some forty intelligence centers of the 
U.S. Government. ; | 


These centers are autonomous. Each of them has its own criteria 


for type of data, method of processing, equipment for processing, 


security control, and every. other conceivable parameter. COINS, . 
which is the technological medium for interaction between them, must 
resolve the differences. 
It is eviews from preceding Sieeaesiods that the data retrieval 
C problems of the COINS eesieonnent are-not all solved, and that the 
solution in many cases may be a long time coming. Much of the COINS 
effort in this decade will be expended on these problems. 
Beyond the problems associated with data retrieval there are 
services which the network can provide. These must be defined to 
fit the needs of the analyst. The network can become a system for 
data processing which taps all resources of the community, at the 
analyst's convenience, and provides him with the tools for effective 


use of them. 


4 | 2 
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3.0 FACTORS INFLUENCING THE PLANS - be 
The following factors were eenadaeied Gn the development of cha 7 
Technical Support Plans (Annexes A, B, C, and D). 
3.1 Facts | 
- COINS will continue to supply garvicencbeyoda that of a conduit 


for data transmission to the COINS users. These include services 


-that can be provided more efficiently by COINS than by the separate 


participating agencies; e.g., network access control, common query 
language (ADAPT), user support systems; and information storage and 
manipulation services for those users homed on a-TAS who cannot or 
do not have these services provided by their parent organizations. 

ASD(C°I), Executive. Agent for the COINS program, has directed 

that: 

a. The TCP4/IP4 Host-to-Host protocol be implemented in 
COINS II, IDHSC [I, AUTODIN II, and ARPANET as a first 
step towards achieving network interoperability. This 
will require modification to the IMP software and the 
Host Access System (HAS). 

b. AUTODIN II will be used as the long-haul communications 
facility by the mid-1980's, therefore, COINS II will 
be required to use AUTODIN II as the preferred conduit 
providing services outside the Washington, D.C. area 
vice ARPANET or IDHSC II. 

ce. The COINS PMO will work with DCA in the development of 
a community standard front-end. The use of this front- 
end by COINS could have a significant impact on the 
COINS Access System. 

The expanded COINS plus existing high turnover rate in COINS 


users, perticuler”?y in the military organizations, necessitates a 


continuing and increasing training work load. 


13 
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a2 Assumptions 

~ the COINS will continue through the 1980's and be aeandes to 
fine t ind as the local network for the Washington, D.C. area DODIIS 
host computers. DIA has informally designated COINS as the local 
Washington D.C. DODIIS network. It is assumed that this designation 
will be made formally, and the host computers involved will be iden- 
tified along with procedures on how these hosts will be treated; 
i.e., like the existing COINS hosts or in some special ways. Until 
the designation is formalized and the hosts identified, etc., plan- 
ning for the expansion cannot be completed. 

Access to COINS should be expanded te the analysts with less 

than TS-SI/TK who need COINS accessible information. This requires 


€ improved security procedures to preclude unauthorized disclosure. — | 


< 14 
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H 
- : ; : 2 : ! 
is 4.0 SUMMARY OF TECHNICAL SUPPORT PLANS : : : 


The objective of the COINS PMO is. to provide, within available 


resources and other imposed constraints, the highest quality, secure | 


services to the users of COINS and to the organizations who are the 
sponaors of COINS accessible resources--presently file sponsors. 
4.1 COINS Network Management 
To meet the objective, the COINS PMO must be aware of user and 
sponsor needs that are not: being satisfied adequately in order that 
unsatisfied requirements can be addressed in the COINS program plan- 
ning and budgeting. For this reason, resources have’ been programmed 
to acquire a network management system (hardware and software) that 
can monitor the status and performance of the hardware and software 
C = that comprise the COINS network and its accessible resources. Also, 
| the casnceaene system will. collect and analyze information relative 
to the usage of COINS and its accessible resources, and data relative 
to user acceptance and satisfaction of COINS. 


The COINS Network Management System comprises: 


@ The Network Monitoring Subsystem (NMSS) - To collect 
and analyze status and performance data for operations 
and management 


e The Network Usage Information Subsystem (NUISS) - To . 
collect and analyze data relative to resource usage : 


e The User Reporting Subsystem (URSS) - To collect and 
analyze data relative to user satisfaction of COINS. 


The Technical Support Plan for COINS Network Management is presented 


in Annex A. 
< 15 
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By the end of FY82 the Network. Monitoring Subsystem (NMSS) will 
be’ operational in the BBN C/70 Ratweek Control Computer (NCC) and 
the BBN C/70 Network Management Computer (NMC). Also, the Network 
Usage Information Subsystem (NUISS) will be implemented on the Net- 
work Management Computer. The evaluation of the pilot User Reporting 
Subsystem (URSS) is scheduled to be completed by the end of FY82. 

.FY83 through FY86 will produce enhancements to NMSS and UNISS, 
and the operational URSS will be developed and implemented. 

4.2 COINS Network Resources 

The COINS-provided resources are the hardware and software in- 
cluded in the switching and access rings, and in COINS PMO-controlled 
service hosts computers in the service ring--see Figure :2. 

The switching ring includes the switches or Interface Message 
Processors (IMPs) that perform the message assembly and disassembly 
functions for the access systems and perform the packet switching 
and control functions in routing data from origin to destination. 

The access ring provides the points of entry to COINS. Host ree 
access is through a Host cease System (HAS); terminal access (for 
terminals not housed on a host computer) is through a Terminal Access 
System (TAS); access from other networks is through a Network Access 
System (NAS). | 

Three COINS PMO DEC FDP 11/70 server host computers presently 
are planned: the Network Service Host (NSH), the Technology Transfer 


Research Facility (TTRF) computer, and the User Support Information 
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System (USIS) computer. diitewe hice service hosts are also TASs in 
that they will also sdppene access to COINS from attached eewinays. 
In addition to the basic software for pededs es functions, 
many other COINS-provided resources are being developed to satisfy 
known user requirements. They include: 
ADAPT - A COINS network uniform query language 
to provide an alternative to using the 


many separate query languages of the 
several server hosts. 


Usts - User Support Information System, to 
provide on-line user training and user 
guides. 

NVT - Network Virtual Terminal, to provide 


for a wide range of terminal types to 
access COINS host computers without the 
need to implement the many terminal 
handler routines in the host computers. 


TCP/IP . ' — Transmission Control Protocol/IP is the 
DoD standard host-to-host protocol and 
internet protocol. 


FTP 2 File Transfer Protocol, to provide an 
efficient way to transfer large volumes 
of data between host computers. 


Priority/Precedence - To provide the mechanisms to assure that ~~ 


the users who have the most urgent need 
to access COINS during crisis situations 
will not be locked out by less urgent 
usage. 

By the end of FY82 the present Honeywell H316 IMP will be re- 
placed with BBN C/30 IMPs and TASs will be installed at NAVINTCOM, 
DIA, Lawrence Livermore Laboratories, and State. ADAPT-II will be 
operational and ADAPT-III will be implemented for evaluation at the 
end of FY82. Also, USIS will be under evaluation and TCP will be 
implemented. 
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By FY86 NASs will be installed for the IDHSC and PLATFORM networks, 
a HAS will be installed for the WINDMILL host computer, a Data Base 
Management System will be implemented in one or more of the COINS PMO 


Service Hosts, ADAPT-III will be operational, USIS with a Computer 
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Aided Instructicn system will be available, TCP and NVT will be oper- 
ating, and Priority/Precedence will be implemented. | 
4.3 COINS Network Development | 
Network development is, for the most part, technology transfer; 
i.e., evaluating existing or developing tools and techniques to deter- 
mine if they would make valuable additions to the COINS. Development 
within COINS will occur only if a critical need exists that cannot be 
satisfied by adopting or adapting an existing or developing resource 
from outside COINS. In either instance an evaluation of the capa- } 
: i 
bility is made to determine “its usefulness and to determine how the 
é rs 1 
capability can be used or how it should be modified to make it useful. 
Presently planned development activities include: 
MMRP - Man-Machine Relationship Program, is being i 
funded by ARPA. The COINS will be used as 
a. test bed to evaluate the evolving hardware * 
and software planned over the next several 
years. 
RITA ~ Rule~Directed Interactive Terminal Agent, is “| 
"a system to develop "agents" to perform tasks 
for the users. The system was designed to 
allow for changes to be made to the agents 
by persons not knowledgeable in computer 
programming. 
GRAPHICS — ~ Is a development activity to determine if 
computer graphics is useful, and where and 


how ic would be useful in the COINS user 
community. 
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Text Editing/ - Is a development activity to determine if Sh tS 
' Word Processing and where these capabilities would be useful 
. . to the COINS user community. Preparing mes- 
sages for electronic mail, report (product) 
preparation, and preparing on-line user z* 
guides and training aids are potential appli- 
. cations. 


Annex C is the Technical Support Plan for the COINS Network 


Development. ; 


By the end of FY82 the evaluation of the electronic desk (ED-1) 
of the MMRP will be completed with recommendations relative to its 
future in the COINS community. 
By FY86 a computer will be installed at one of the intelligence 
schools to. support technology transfer and development projects and 
the MMRP evaluations will have been accomplished on many evolving 
€ . . capabilities. Mga: the evaluations of RITA, GRAPHICS, and Text 
Editing/Word Processing will have been completed and recommendations 
‘aaa on if, where, and how they may be applied in the COINS user 
community. : 
4.4 COINS Network Security 
COINS Network Security including need-to-know controls is con- 
cerned with adapting and developing tools, techniques, and operating 
procedures to ensure that the data within COINS is protected from 
unauthorized avecioeure: The following programs have been identified 
as potentially useful to enhance COINS security. 
KSos - Kernelized Secure Operating System, is an approach to 
provide users access to a system without the need for 


all users to have system-high clearances. The COINS 
PMO is participating in the test and evaluation of KSOS. 


C | : 
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BLACKER - Is an NSA project’ to provide for end-to-end encryption 


of data passed through a network. Initially, BLACKER 
is considering the user terminal to a distant host 
portion of the problem. Host-to-host will be accom- 
plished later. . 


Multi-Jurisdiction Security Controls - Is a procedure where all 


SNFE - 


User I.D. 


users (internal and external to COINS) will be regis- 
tered on a COINS Access System. The registration 
will include the host systems, files, and other re- 
sources for which each user has been granted access. 
This procedure cannot be fully implemented until all 
COINS access is through either a TAS, HAS, or NAS. 


Standard Secure Network Front End, is a Defense Com- 
munications Agency project to develop a standard 
front end for all DeD packet switched network host 
computers. ASDC-I has requested the COINS PMO to 
participate in the SNFE design and development. 


Authentication - Is the constant assessment, evalua~- 
tion, and where appropriate, the implementation of 
techniques to authenticate legitimate users. 


TAS/NAS Software Encryption - Is a project to determine how 


software encryption can improve security and how it 
should be implemented. 


File/Output Labeling - Is the development of procedures to 


Annex D is the Technical Support Plan for COINS Network 


Security. 


assure that files and other output is properly labeled 
relative to security classification and compartments. 


By the end of FY82 the evaluation of KSOS, BLACKER test, and 


TAS/NAS Software Encryption will be completed. The COINS Access 


System designs 


of 1984 and beyond will reflect the integration of 


concepts embodied in BLACKER, KSOS, and other ongoing security/NIK 


developments. 


By the end of FY86 the BLACKER applications, Multi-. 


Jurisdiction Controls, and improved File/Output Labeling will have 


21 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


a en ee 


EERO -——veemnemepememenne  o 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140004-8° 


been. implemented. The design of the SNFE will be completed and will . See 


have replaced the COINS HAS. Also, secure multi-level security 


decess, will be capable of being demonstrated, 


Sene= 


4.5 peedurce Summary 
The following tables summarize the funds for the COINS PMO main- 


tenance and development programs. The resources are shown for O8M, 
Procurement, and RDT&E, by Annex for fiscal years 1980 through 1986. 
Summary tables present the funds for O&M, Procurement, and RDT&E for 
fiscal years 1980 through 1986 for all annexes followed by a summary 
table for all funds categories for Annexes A, B, C, and D for fiscal 
years 1980 through 1986. The last table presents the COINS PMO staff 


requirements. 
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390 


450°| 200 
430 430 : 
_ 375 205 


1,645 


. TOTAL BY FUNDS CATEGORY 


aad MANAGEMENT 
OPERATIONS 
USER SUPPORT 


< GRAND TOTAL 
_ 23 
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Following is the: aisueece of terns whieh has been developed 
from the combined annexes £08 the pone. range tae a ; ; o f 7. @ 
1822 ae a to 4 ie = Oe oe ee 2b ee age” ra Oe eee 


BBN Report 1822, "Tne specification of the Interconnection of a Host and 


Tne permission to access a Coins element and the constraints(i¢ any) | 


. placed on the access. Examples cf constraints include the familiar access to. 


read only, access to excute, etc. Access authorization may be placed on ria 
COINS object, appitcetton, file, program, or aevscee 


Access Control — 


The tasks imposed on a network or any of its components, performed by 
nardware, sottware, administrative controls, to control usage of the system. 


‘Ineluded ares monitoring system operation, insuring data integrity, user 


~ ACST 


identification, a ad ba access and changes, and granting» user access. 


Access Method re 
The technique and/or the program code ina CORPOEST operating systen . 
that provides SRRUECOUEEEE services. 


Access Time 3 
é 1. Tne time anterval between the ‘instant at which data are called 
tor from a storage device and tne instant delivery begins. 

2. Tne time interval between the instant at which data are requested 
to be stored and tne instant at which storage is started. 


ack oe ae 7 - 
A control bit Cacknowledge) occupying no seguence space, which indicates 
that the acknowledgement field af this seaqment specifies the next sequence 
number tne sender of tnis segment is expecting to receive, hence 
acknowledging -BESeipe ef all ereyaus sequence numbers, 


Aeelgtaae Chiet of Staff Intelligence Caray (ate Force) -— 


' Aerospace Defense Command, Colorado Springs. 


ADAPT ; 
ARPA Data Base Access and Presentation. Terminal system. A common query 


; language (UDL) being developed in phases by Logicon. Inc. It will provide 


- ADP 


Cin its later phases) a common language that can be used to query any file 
on COINS. Adapt (Phase I) is a feasibility demonstration of the UDL to 
target language transtoras. 


apcce 


Advanced Data Communications ‘Gantrel Procedure developed by ANSI. It is 
a bit oriented protocol. . 


Automatic Data Processing 


' KO® System Security 


+ stern ememt tem 


Includes all hardware/software functions, characteristics, and features 
“operational procedures, accountability procedures, and access controls at 
the central computer facility, remote computer and terminal facilities ,and 


« 
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- and the management constraints, physical structures sand devices; personnel 
a and communication controls needed to provide an acceptable level of 
ae pecrecr tor for eaeeeteies mater dare be contained in the computer systes. 


ADS hie ee ee a eee 
State Department Automated Document systen, 7 ia ie a eo 


AFIN | ; ; 
Air Force cated i tdenek: Pentagon. 


. AIRES ; : ; xe v 
Advanced tdadary Requirenents ang Exploitation System, 


Alternate Routing 
An alternative communication path used is the normal one is not available 
- There may be one or de ae acs paths. 


- Analysis. we 
The metnodical investigation of a ‘problem, and the separation cf the i 
proplem into smaller related units for further detalled study. - ae 


ANSI 
American National Standards Institute. 


An/Gyg=21 (V¥) 
A. digital equipment earseeactca eREG? PDP=11 “series Sip tcoapaters: 


Application 
A. term used to denote a COINS data rétreval avetes (e.gs Iss, TIPS, 
. SOLIS...): Tne object to which users are connected in processing interactive 
f '. gueries.(This term is deliberatily chosen to make clear the separation of 
€ a host and the system(arplications) now on the nost. It is also intended 
é to remind the user that a given set of hardware (a host e. g. NSH) may 
have two or more COINS applications (systems) (CNCC, ADAPT I, ete 
resident on it. Sometimes called a "system" (ISS, SOLIS); sometimes 
_Yeferred to by the hest on which the application resides (RYE,DIAOLS). 


ARPA 
Advanced Research Projects Agency of the Untted States Department 
of Detense. Also DARPA, 


ARPANET / 
The network set up by ARPA, A packet switching intercomputer network — 

- developed by ARPA. ARPANET is now managed by the Defense Communication 

agency. 


ARPANET Message oo ; 
The unit ot data transmission between a host and an IMP in the ARPANET, 
The maximum size is approximately 8096 bits. 


ARPANET Packet , 
A unit of transmission used oe the ARPANET between IMPS. The maximum 
Size is approximately 10c8 bits, ; . 


ASCII fo? gs 
American Standara ecde for Information Interchange. This is a seven=bit= oa 


plus parity coce estapiisned by the American National Standards Institute 
(formerly American Stendards Assoelation) to achieve compatibility between 
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data services. Also called USASCII. =~ wre : ce tad . 

Assistant Secretary of Oefense for Intelligence, Now ASDC3I for Command -.- - 
Control Communications-and Intelligences 9. TST tere 
ASSIST * . oe - : es . pees “se Se ae ies, fo Saad Pe cnet ad iF. = 

_Army Standard System for Intelligence Support Terminals. 

Analyst Terminal Support System. Rs a eae oe eS 

Authorization © oe ea ee ae, 


A representation of a users right to access specific files or specific 
information in a file: in general tne purposes for which 4 user has a right 
to access an application. : : 7 ao -_ 


AUtodin II eh ee - ae ae 


Automatic digital information network(Dept of Detense). This 1s a packet 
switched network scheduled to replace Autodin I in the mid~1980's,. - 


et pas eda ameter Sea a, erSte a eae bu 


1.Pertaining to the teennique of excuting a set of computer programs 

such that each is completed before the next program of tne set is started.. 
2.-Pertaining to the sequential input of computer programs or data. : 
3.Loosely, the excution of computer programs serially.” Pe Aka me 


t 
en ne ree ne eee) 


BAUD ; nm ae hae a Bet - = oe ; eee ates 
' A unlit of siqnalling speed equal.to the number of discrete conditions or 


. signal events per second. For example, one baud equals onewhalf dot cycle. 


per second in Morse code, one bit per second in a train of binary signals - " . %, 
,and one 3-bit value per second in a train of signals each of which can ; 
assume one of eight different states. - an a woe oe 

Binary Syncnronous Communicatios (BSC) Sa ea pny ee SA oe SF 


A uniform discipline, using a defined set of control characters and 
control character sequences, for synenronized transmission of binary coded 
data between stations in a data communications system. _ ; . 


Rirddog Boa, : er 
A device used in Platform to do error detection anda. retransmission 
at both ends of the communication line. between a directly connected “Host” 


or "Front End" and an IMP. E : Gap nee fe = 
Blacker a : 
Prototype secure communication system, A program to develop new security : 2 
_ protection techniaues on packet switcned networks. = 
Buffer =e ree : 


1. A routine or storage used to compensate for a difference in rate of 
flow of data, or time of occurence of events, when transmitting data from 
one device to another. ; eRe ass ao 

2. An isolating circuit used to prevent a driven circuit from influencing 
the driving circuit. . : 


CATENET > a1. ee ne 
; ; 26 7 
we 


CAI. 


‘Capability _ ee ee ee ee 


fae siiias cenaamnennentitntitaiatinmemensaeneasmmemmanentiaa 


mee 
ae . 


om: Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8° 


ey : : ea anes dein Pa ee, Seale a wee ee 


Tnis term means roughly the collection of packet networks which are. 
connected togetner. It is further defined as a confederation of 
cooperating networks. ot ee fee 


. Computer Assisted Instruction. 


CAMS ; Rake, ash 
' _Comirex Automated Management System. 


Application Capability 
Application Compenent Capability 
_' A specification of tne constraints on access. Within the range of 


POSSIBLE modes of access for a particular “object”, if it defines what 


is permitted. (Note that the application and component are 
application-defined,. . ; obra 


CAS . ; 
COINS II access systems consisting of NAS, HAS, or TAS, 


Channel ; F 
The logical path connecting user to hosr, or hest to host. Cirevits 
may be multiplexed to support several channels- conversely, an channel 


- may be distributed over several circuits. . . t . Bef, 


Cirevit =~. ree: — i : 
The basic physical patn over which information travels. 


- Chreuit Switening . 


A metnod of communications where a dedicated channel or circuit between 2 8 cae 
calling and called stations is establisned on demand for exclusive use 
until. the connection is released. Each data path is estableshed between 
two nodes by switching a data circuit for the duration of tne need, 


CMSS . : ; 
_ Communication Monitoring Sub-System. (NSA Deckroof program.) 


cor es — - 6 & ge" 7 . 
Community of Interest. 


ecxcc ; 

COINS Network Control Center. The installation and organization ; 
responsible tor monitoring the current behavior of a network and initiating 
the repair of failed elements; primarily tor failure reporting and 
accumulation of statistics. 


CNMS ; : 
COINS Network Management System. A multi-faceted COINS program to develop zs 
and evaluate network usage and monitoring information. 


COINS 
Community on-line Intelligence System. 


COINS [I : 
This refers to tne COINS Network which is continuation of the 
exverimental COINS network that has been in operation tor several years. 


CNINS TI1 
COINS II is a upgraded COINS to provide needed improvements in COINS f 
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(. a primarily to adapt the. ARPANET packet switcen technology. - ; 


- COINS Oma : eae ON eal Te a . : 
; _ COINS Project Management Office 
Commonality 4 5 

(DOD) A quality whieh applies to material or systems possessing like . 
and interchangeable: characteristics enabling each to be utilized or 
operated and maintained oy personnel trained on the others without 
additional specialized training; and/or naving interchangeable repair 
parts and/or components; and applying to consumable items interchangeably 
equivalent witnout adjustment. a 


Communications computer - o 
A computer that acts as the interface between another computer or terminal 
and a network, or a computer controlling data flow in a network, 


Communications control cnaracter ; ; 

A functional character intended to control or facilitate transmission 
over data networks. There are ten contrel characters specified in ASCII 
whicn form tne basis for character-oriented communications control procedures 
e See also control character. , 


Compartmented Intelligence : 

Intelligence material naving special controls 
indicating restrictive handling for whicn systems of segregation or 
handling are formally establisned, ; 


Compatipility 


(DOD) Capability ot two or more items or components. of equipment or 
material to exist or function in the same system or environment witnout 
€ mutual interferences. . ‘ aan : 
Computer application . 


That portion of an application which is performed by a computer. 


| Computer Network © , _ 
: An interconnection of assemblies of computer systems,terminals and 
communications facilities. ; i 


Comsec 
Communications Security 


Connection Protocol . — . | . —— : 
A procedure for establishing a communication path between two processes, 


Connect time : 

: A measure of system usage by a user, usually the time interval during 
which the user terminal was connected to a process ina computer, i.e. 
between log on and log off. 


Connectivity ; 

Basic network communication and interconnection between processes. 
Achieved by backbone communications network as transport facility, supoporting 
linkage protocols (standard), and the use of standard internetwork gateways 
to adaot differences in network technology or protocols to support ; 

communications between processes within different networks, ; 


CONTEXT 
A teleconferencing system whicn {s primarily devoted to document 
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_ Of related files treated as an entity. 
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Control Cnaracter ; 

1. A character whose occurrence in a Ceapeteutad, eshiest anitiaces 

» modifies or stoops a control function. Sarees 
2. in tne ASCII code, any of the 32 characters. in the tirst two columns 


Oe the stanaard code taole. See also: Communications Eancrod Character. 


Control Procedure 
The means used to control the orderly esimunteacten of Antormation between 
stations on a data link. 


. Conversational 


Pertaining to a mode ot processing that involves step-by-step incéeaerion 
between a computer and tne user at a terminal. r 


‘Conversational mode(also interactive mode) 


' association, or connection, is maintained between the usere and the process 
for the entire duration of information intercnange. The duration of the 
connection is referred to as a "session’ and tne exchange of information 
ceases when the session is bereineteds 


cpu , 
Central Processing Unit. 


Crosstalk 


j 
{ 
| 
Tne interaction between a user and a specific system process in which an | 
| 
q 
| | 
. The unwanted eneray transferred from one circuit, called the 

i 


- "disturbing" circuit, to another circuit, called the "disturbed® _ ee 
| efLreulit. ; an - 


CRT 
Cathode Ray Tube 


CUPA 
-Coins Usage and Performance Analysis. 


CcusP 
COINS User Support Panel.. 


DARPA 


Defense Advanced Research Sbutect Agency. 


Data Rase 
1. The entire collection of information available to a computer system, kG 
2. 4 structured collection of information as an entity or collection 


Data base processing 
The storage of quantities of information, in one or more torms, 
available to the network and its users. 


~ 


Data Communications 


The interchange of data from one point to another over : 
communications channels. See Also : Data Transmissions, . “° 


Data Communication Equipment 
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. The equipment: that provides the tunctions required to establish, maintain | 
and terminate a connection, tne. signal conversion, and coding recuired 


. for communication between data terminal equipment and data circuit. The ae 


data communication equipment may or May not be an integral part of a 
computer; e.g., & modem, ev . : : 


Datagram © 


A packet of information whieh is carried to its destination without 
reference to any other vacxet, or prior establisnment of a data path. An 
internet datagram is the unit of data excnanged between a pair of internet 
modules. ; 6a oT 


' Data Integerity 


A performance measure based on the rate of undetected errors. 


Data Transmission 


The sending of data from one place for reception elsewhere. Compare with 
DATA COMMUNICATION, j ; 


DCI vg 
Director of Central Intellisence. 


pocMe 
-Digital data communications message protocol. A uniform discipline 


- for the transmission of data between stations in a pointeto-point or 


multi-point data communication system. The method of Physical data transter 
used may be parallel, serial synchronous or serial asynchronous. (DEC) — 


DIAOLS Hy Seta’, Mi, oes ‘ _ 
Defense Intelligence Agency On-line System. Also the name of the 
retrieval language used on the system,. : 


DIS - 
DIA Defense Intelligence Scenool. 
pop . . 
Department of Defense. 
DOD Intelligence information system (DODIIS) 

That contederation of defense organizations and activities employing 
manpower, automatic data processing equipment and techniques, and associated 


telecommunications assets which support the U, S. Defense intelligence. 
System, = ae 


Duplex Cnannel . , a ; 
A cnannel providing simultaneous transmission in both directions. : 


ECU ; : : 
Error Correction Unit. Also referred to as BIRODOG, 
End-to-end encryption , 


Data encrypted at the originating node is not decrypted until it 
arrives at its final destination. 3 


End to end protocol : ; at 
Denotes process(on one computer) to process (on another computer) wt 
communication via virtual circuit. ; 2° 
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A control bit (End of letter) occupying no sequence space , indicating 
that this segment ends.a logical letter «itn the last data octet in the 
segment. If this end of letter causes a less than full buffer to be released 
to the user and the connection bufter: size is not one octet then the 
endwotwietter/butteresize menee then te the receive sequence number most 

be pace. 


Ethernet 


A nignespeed cormunications systen using a snared coaxial cable, 
Developed by Xerox Palo Alto Research center. 


Eucom AIDES 
European command Analysts pets agence Display and Exesotrertan System, 


FICPAC ? . 
Fleet intelligence Center Pacific, located at Makalapa, Hawaii. h of the 
Also the location of the IOHSC Pacom Ssitch. 


Flow control (Across Sieecetnaay 
Tne function by whicn a unit of data is accepted only when it can be 
transfterred across the connectian. d 7 


Freauency Division Multiplexing (FDM) 


Dividing tne available transmission frequency range into narrower bands 
each of enter is' used for a separate channel. 


wronteene Processer (FEP) _ -_ aS 


A computer which is used to intertace between a host compurer. and the 
NERVE RE: 


FTD : 
Airforce System Command Foreign Teennology Division in Dayton, Ohio. 


File Transfer Protocol. The protocols necessary to transait a entire. 
tile from one host system to another. = 


Fundamental Protocols 

Concerned with the mechanics of communication between network components. 
Multiielevel structure for functional modularity. Isolate user level processes 
from communications details. Support base tor the network security and 


' network management, 


- Gateway 


The pnysical and logical interface between networks. The principle 
function of the gateway is the transfornation between protocols of different 
networks.In IDHSC IT, the term ‘Gateway’ has a different meaning. Every 
interface to the IDHSC II ROUTEF is reférred to as a gateway, 


H316 ) 
_ The Honeywell 316(é comcuter currently used for IMPS). ; 
Hardware 


The physical equiprent cr devices forming a computer and peripheral 
equipment. 


be 2h Shee Soe E eid ata 
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_ Harmonization 


‘destination code,priority, or message type. 


Heterogeneous (Computer) Network 
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(DOD) Tne process ‘and /or results of adjusting differences or dae 
inconsistencies to pring signiticant features into agreement. ; : ~ 


o- 


Header = APSE RE AND os meng as 
The control information prefixed in a message text, @+ Ger source or 


A netaork of dissimilar host computers , such as those of different 
manufacturers. At least one nodal processor has eharacteristics that are 
incompatible with those of the other nodes. Compare: Homogenous Network. 


Home-Host ‘ : . 7 ; 

* The nost system tnrough whicn a user ordinarily enters the COINS 
network. For many users, a TAS is their hnome-host; however, any computer 
system providing terminal user support in the COINS network is the 
home-nost of tnose users "known" to it. a a8 


”7 Homogeneous (Computer) Network 


A network. of similar host computers sucn as those of one model of one 
manutacturer. All nodal. processors are directly compatible with regard 
to suen cnaracteristics as data transmission code, instruction set, and other 
factors which atfect the ability of nodes to share data, program files, etc. 


Host computer . om 
A computer attached to a network providing primarily services such ; 
as computation,data base access or special programs oF programming languages. 


Hest Interface 


Tne interface between a communication processor and a host computer. 


IALIPS , . : 2 ; 

Integrated Automated Intelligence Processing System. IAIPS is a 
modernization program to integrate Navintcom systems in support of command 
requirements through the 1980°’s. ; 


) 
. 


“ICA te 


Information and Communications Applications Inc. 


Ice. oH 
Initial Connection Protocol. 


Identitication ; : 
1. The process of providing personnel, equipmrnt, or organizational 


‘“eharacteristics or codes to gain access to computer programs, processes, = 


files or data. 
2. The process of determining personnel, equipmrnt, or organizational 


‘eharacteristics or codes. to permit access to computer programs,processes, 


tiles or data. 


IDHS ; . 
Intelligence Data Handling System 


IDHSC 
Intelligence Data Dandling Dystems Communications. 


IDHSC 1 


4 32 a: Saget catat & Fe e. Awe vies Bh 
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‘the storeeand-¢orward network managed by DIA. which connects ester pee 
Enter i tgence. ergenrceeen compurer. eraccree "tee 48 Sere 


IDHSC Ir. | a eo oi ae A elie oy ee 
The. new packet switened IDHSC network enven “wilt include both batch oe a 


-..and interactive PECEOCOL< 


Tis ; ae a ae 
NPIC. Integrated Infornation System. The. original NPIC COINS host, 


Intertace Message Processor, The IMPS are used both as storeeand 

forward elements at the nodes of the communications network and as interfaces 
between the network and tne host computers. The original IMPS were Honeywell 
H516 computers, slightly modified. For economy, H316 computers were later 
used. A microprocessor version of the IMP is under development, The new 

IMP is. pased on the BSN Microprogrammacple building block(MBB). High 
performance . PLURIBUS IMPS are also in use. 


’ Information 


1.. An encompassing term ‘tneloding text, data, amd graphic images, 
2. Data organized to convey knowledge. 


_Intormation Interface 


A logical PHREET SES smpdemenced: at. the application, or user information, 
level... a. : ; 


gS 


_Intormation network 


A system of logically conpataeie information processing systems all 


interconnected by a communications network. 


Information processing 

The manipulation of information to produce the desired results. 
INI : ayes . ae : 7 ww 
COINS Intelligence Network Interface. Front end processors used 
to intertace the batch UNIVAC 494’s at NPIC and NSA to COINS II IMP, 


Initial Connection Protocol CICP) ~ 
The otfical Arpanet Initial Connection Protocol as specified in NIC 


. Document Numper wots 


INR 


State Department Intelligence and Research Division Information Handling 
system, 


Intelligence 

Intelligence {ts the product resulting from the collection, evaluation 
eanmalysis, integration, and interpretation of all information concerning 
one or more aspects of foreign countries or areas, which is immediately 
or potentially significant to the development. and execution of plans, 
« Polieles and overations. : 


Interactive ; 
Pertaining to exchange of information and control between a user and a 
computer process, or between computer processes. 


Interchangeability 
(00D) A condition whieh exists when two or more items possess such 
functional and physical characteristics as to be equivalent in performance 


ad) se eee # ; 7 33 : : : Se Shes, re 
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and durability, and one capable of being exchanged one for the other without 


alteration.of the items themselves or of adjoining items, except for : 
adjustment, and without selection tor fit and performance. — ad 


Interconnection a ; ee ae 
(000) The linking éogether: of interoperable systems. 


Interface (LOGICAL) 

1.. Composed of a nierarenical set of ‘protocols that are used to 
support communications between network processes. : 

22 A Logical, poundsry between protocol layers. 


1. A shared bauddary: detinea by common shyetear. interconnection 
characteristics , signal characteristics, and meanings of interchanged 


2. A device or equipment making possible interoperation between two 


interface. 
- 3. A shared pogte ay pon desy between two sodtware CoMponeetss 


Interface-Layer ; - : 
The collection of asecialicee terminal access euekins (TAS), COINS ; eee 
network fronteends, and server-hosts playing a home-nost role for some 
users. Tne term arises from thinking of the network having a basic 
communication function (the "supnet" layer made up of the IMPS and 
communications lines), an Interface layer (the TAS, CNAS, FE’s, etc.), and 


a ‘Service layer (the Service ROSES Windmill, NOS, etc.). 


 Internetdatagram Protocol , , = ‘ E 


Detines control functions fequired to support ‘Internetwork communications ne 


Ld 


sl Tntebeneratansades 


(DOD/NATU) The ability of systems , units or forces to provide services 


a to and accept services from other systems, units or forces and to use the 
services so exchanged to enable them to operate effectively together. 


. (D00} Tne condition achieved among communicationseelectronics systems 
or items of communications-electronics. equipment when information or = 
services can be exehanged directly and satisfactorily between them and/or 


their users. The degree of snbeeopereortsey snould be defined when referring 
to specific cases. ; 


“IPC. 


The COINS network identifier for the Intelligence Center Pacifie 
IDHS host COMPULEE s: 


toc . 
Initial operational capability.y. 


Internet Protocel. This protocol provides a way for the TCP to send and 


receive variable-length segments of intormation enclosed in internet 


datagram "envelopes". The internet datagram provides a means of addressing 
source and destination TCPs in ditferent networks. 


CIA Information Science Center. A part of the CIA oftice of Training. 
Iss 
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DIA Interactive Support Sytem. 
1a 5 es aa & 4 
Input/Output 
Cryptograpnic device. 


Kiloword seconds. 


Letter et Pas ne 
A logical unit of data, in particular, the logical unit of data 
transmitted between processes using TCP. 


GH/OH pe Fo , 
Local Host/Distant Host IMP interfacing unit. 


LHMSS : 
Local Host Monitoring Subsystem. One of the projects included in the 


COINS Network Management System(CNMS). 


LINK et ee ; =, 

‘1. Any specified relationship between two nodes in a network. 
2.. A communicationm path between two nodes. 

3. A data link. Also: Line, Circuit, Virtual Circuit. 


Lb. 
' Lawrence Livermore Laporities. 


Locin (Logon) oe 
A user access. procedure to a system involving identification, access 
control and exchange of network information between user and system. 


Logout (Logott) 


A-user exit procedure from a system often providing usage statistics 
to the user. ; 


Lest . fei ; 
The Lost system of COINS provides a measurement of the networks’s 
performance in terms of completed messages and messages that are lost. 


LRP 

Long Range Plan. 
Nea . 
Microprogrammable Building Block 
MBS. IMP ; 


An MBB, including I/0 board and microcode or IMP 1/0 funetions, whien 
emulates an H316 IMP. Developed by BBN. 


MCCU . 
AUTODIN LI Multiple Channel Control Unit 


‘Message 


1. A communication mostly in words intended to be read by a person. 
2. A message is a self-contained logical and physical unit of intormation 


: oa “a 5 ; a4 4 . : = % s 
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€ ae ceuneneciga petween a source. and a Dee iaatton. It may be subdivided {nto 
Byte blocks or packets. It has a logical relevance to a source and destination. 
Messages are analogous to a shipment of goads where packets aad 
- or blocxs would represent ’ the freight Serer 
. ears. Routing and other control information is contained within the message Sa 
header and trailer data wnicn is added at the origin and ; : 
‘remains unaltered until it: reaches its destination. ; 


. MITREBUS 
; A. high speed conndeieactone system using a arated ceaxtel cable employing 
_ CATV teennology. Developed by mitre Corporation. 


“MLS é ~ 
Myltilevel Becurttys 


Modem (MOdulator-Demodulator) ae 
A aevice that modulates and dendaulates eagntee ivananittea over a 
Soneunseeeton facilities. 


i 
vodule ; a> 
An she Leenrers es usually in software,of a PrerCces or other PROreS #. 
: i 

i 

{ 


MMRP : ae 
Man Machine Relationsnip Project. An ARPA cusasered: program to improve 
human SAESEESce to SPSEMESE He 3 


MSL. ‘ : ee : 5 : 
Maximum Segment Lifetime, the time a TCP segment can exist in the 1 
: Internetwork system.. ORDERED ENG defined to be 2 minutes. an Ss cisaen i 


€ Multi-Level Security Mode ; ; ; ; ; 
fia. ‘A mode of operation under an operating epetearepervinee or executive 
program) which provides a capability permitting various levels and categories 
or compartments of material to be concurrently stored and processed in an 
‘ ADP System. In a remotely accessed resource~snaring system, the material 
_ gan pe selectively accessed and manipulated from variously controlled 
- terminals py personnel having ditterent security clearences and access 
aporovals. This mode of ooeration can accommodate the concurrent processing 
and storage of; A) 2 or more levels of classitied data, or 8B) 1 or more 
levels of classified data with unclassified data depending upon the 
_@onstraints placed on the systems by the Designated Approving Authority. 
-(Seetion V. Co 00D Directive 5200.28). 


NAS : ; : 
COINS LI Network Acess System. A cons internet gateway, 


HAS/FE 
A host-CUINS Access system, 


é 


Navintcom : 
Naval Intelligence Command. 


ncc ; : 
Network Control Center. The installation and organization responsible 
for monitoring the current behavior of a network and initiating the repair 
of failed elements: primarily for tailure reporting and accumulation a 
ef statistics. Currently tne network control computer is a H316 whien Jot 
collects real time status information on the COINS II network, 


36 
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Paes 


oe 


NCP ot Fd = a a re 
Network Control Program. THe program in a host which handles the link 
_ .to the IMP and controls communications between processes in the Host and 

- processes elsewhere in tne network. : 


NCS 


NDS 


“WSA National Crytological School. 


NPIC New Data System. The new NPIC COINS host. 
Ned | | . 


A ert text editor developed by BBN under contract to the Rand Corporation 
eIt is used witn a CRT terminal to prepare and modify documents, letters, 


- messaqes, and computer programs, . 


'.NEED TO KNOW (NTK) ~ 


An intormal ( up to each ‘individual user.or agency to determine the 
requirements tor disclosure) basis tor determining whether or not authorized 
access to information to individuals whom are otherwise properly cleared. 


_ Network | 


1. An interconnected or interelated group of nodes. : 

2. In connection witn a disciplinary or problem oriented qualifier, 
the combination of material, documentation, ‘and human resources that are: 
united by desian to achieve certain objectives, CeSer 42 SOCial science 


- network, a science information network. 


“Network Control Program (NCP) ee 


Tnat module of an operating system in a host computer, which establishes 


_and breaks logical connections, communicating with the network on one side, 
- and with user processes within thé host computer on the other side, 


. Network Processince 


The movement cf information among information Processing and data base 


‘processing components. : : 


Network Security a: , 

The totality of measures taken to protect a network from an unauthorized 
access, accidental or willful interference with normal operations, or 
destruction. Tnis. includes protection of physical facilities, software, and 


personnel security. See also: PRIVACY. 


Network Topology 
' The geometric arrangement of Links and nodes of a network, 
NIC : . 
1. National Indication Center(absolete-now merged with NMIC)> 
2. Naval Intelligence Command, or: 


NIPSSA . 
, Naval Intelligence Processing System Support Activity. 
NMIC : 
'  Wational Military Indications Center 
N¥SS 7 7 ~ 
COINS Network Meniterring Subsystem. A replica of the ARPA Network 
Control center computer system and a component of the COINS Network 
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PP rae 2 aoe ; as 
& - Management System. (CNMS) 
. Node ets. fare me ee 
: An end point of any branch of a network, or a junetion common to two 
_ or more pranches of a network.. : lay 


wosc | Sigh eA 
"Naval Ocean System Center in San Dieqo. 


KosIC ae a 1th oe 
_ . Naval Ocean Surveillance Intelligence Center in Suitland, MO. 


~ WwPTC : 5 ; ; : : 
National Photographic Interpretation Center 


NEMO fie Be 7, 
Networks Project Management Office (NSA)> 
NSASAB a . 

NSA Seientific Advisory Board 


“NSH . 
The COINS PMO Network Service Host. 


nsoc 
NSA Sigint Operations. Center. 


f“ NSS Pe 
! NMIC Support System. 


NUISS ed 
; Network Usage Information Subsystem, 


Null Modem a : ad 
A. device which is incoporated into tne line driver logic of each Coins 
“II IMP. This device provides the NCC with the Capability for remotely 
turning the line around to allow verification of operation. 


-_ NVT ae : 
Network Virtual Terminal. The "Standard * terminal as seen by 


applications on the network. Real terminals are mapped into and from the _ ae 
NVT. : " : - 


ONI : : 
Office of Naval Intelligence 


On-Line ta : ? 
1. Pertaining to equipment or devices under control ot the -central 
processing unit. ans ere _ 3 
2. Pertaining to a user’s ability to interact with a computer. ‘ 
3. Directly in the line loop. In telegraph usage, transmitting directly 
ento the line ratner than, for example, perforating a tape for later 
transmission. 


Open-Systen. 
The concept of openness that refers to a set of commonly agreed standards 
that make possible meaningful interactions between any combination of 
C computing systems, data processing systems, or human operators which ere 
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a ae 


ee connected together in. some way. wwe 


Operating System(O/S) . re ioe 7 
An integrated collection of service routines for supervising the 
seavencing and processing of programs by a computer. Operating systems 
control. the allocation of resources to users and their programs and play 
a central role in assuring the secure: operation of a computer system, ; ; 
Overating systems may perform depugging, input-output, accounting, resource ‘ 4 
allocation, compilation, storage assignment tasks, and other system related ; 
‘ €unetions(Synonymous with Monitor, Executive, Control Program, and 


: Supervisor). a 7% 


Options Field oe an 2 gine : ; 
An option field may contain several options, and each option may be 
several octets in lenoth. The options are used primarily in testing 
situations; for example , to carry timestamps. Both the Internet Protocol 
and TCP provide for options flelds. 


{ 

i 

| 

\ 

COINS network indentifier for tne IOHSC Pacom Switch. | 

oo - . St vs | 

PACOM ma ‘fer © 2 : on Se ; | 

Pacific Command : ee of 8 : a a8 a 

Packet ee a, poe Me Poh i 

: A group of bits including data and control elements which is switched 

and transmitted as a composite whole. The data and control-elements and | 

2 possible error control information are arranged in a specified format. 

: May be suodivisions of a message eacn of which may be independently routed, i 

. , It is the physical container into whicn messages are divided for 4 
| * transmission.. See . ae = 


Packet Switching _— a ae . 
-. &. data transmission process, utilizing addresed packets, whereby a 


-ehannel is occupied only for tne duration of transmission of the packet. 
tote: In certain data communication networks the data may be formatted 

into a packet or divided and then tormatted into a number of packets 
(either py the data terminal equipment or by equipment within the network) 
tor transmission and multiplexing purposes. This mode of operation reguires 
an intertace processor at each node of the network. An interface processor 
takes in. a message from its nost processor in segments, forms these 
seaments. into pacxets, and ships these packets separately to the network. 
The destination intertace processor reassembles the packets and delivers. them . a 
in sequence to the receiving system whicn obtains them as a single unit - 
‘ (message). Each packet is individually routed through the network on @ 
a@ynamic routing basis toward its destination. 


-PACOM : 
Pacific Command 


PACSWI ic : 
Jargon for the IDHSC PACOM switch. 


PAF : 
COINS network identifier for the Pacific Airtorce (PACAF) IDHS host 


system. 


Parity Check 
Addition of non-information bits to data, making the number of ones 


C in each grouping of bits either always odd or always even to permit single 
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error detection in each group. - 


Password : x ~ 
A. string of characters that “4s eeeugateaire to “automatic 

means and that permits a user access to Rroreste storage, files, or input. 
or output SEV AC Ess ; bed 


PIRL ; ; PAY 25. ie - : 

Photo Interpreter’ Ss Retrieval Language. The retrieval language used 
to RESET OSSES the NPIC COINS: files tnat were resident on the NPIC UNIVAC 
494. ; ; , a: 


' Plattora 


- A cover name for an paneer’ technology er network designed to 
facilitate tne movement of and access to data within NSA, 


PLATO Pree ee | b: . Se 
Programmed tearatng and Teaching Operation. A computer-based education 
system developed at the Univ. of Illinois. Vended by Control Data Corp.(CDC) 


- Private Line Interface . Used by COINS II to encrypt data trunked 
‘trrougn the ARPANET. 


Plot 10 - ; 
A mengret purpose graphics system. 


Pluribus ‘ 
Hidh speed modusar ane An improved IMP based on the Lockheed SUE 


Computer. 


Privacy 


The right of an individual to ‘eontrol the release or availability of 
information about himself, 


Compares: Network Security.. 
Process 


1. A systematic sequence of operations to produce a gpeeiises result, 
2. A set of related procedures and data undergoing execution and 


Ranpouracton by one or more computer processing units. 


.3.eThe active elements of all host computers in a network ,. 
- $,Programs in execution.. 


projector 
' LAN apolication subsystem of Windmill which supports access to ‘the 
TIPS/RYE data files. 


Protocol 

A formal set of.conventions governing the format and Setavive timing 
of data exchanae between two communicating processes. An agreement on 
tne way in whicn an PORCEC PLES SES communication is to be processed. 


Protocol Layering 
Tne idea of layering is to insulate functions from each other, and 


to establish standard interfaces between functions. A layer {is a.set of 


related functions wnich meets 3 conditions. First, a layer must have a 
specific nierarchical relationsnip with respect to other layers, 
“Second, it must have well defined interfaces between itself 

and its adjacent layers. Finally it must be able to communicate with its 
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peer 


peers in another host complex. Peer layers. are layers in two different hest 
complexes which perform like functions, ; : : et ae 


Real Time © Se beget - an er , ee 
A real-time computer is one whose Processing time requirements are 
governed py external influences. It must receive data, process then, 


and return the results sutficiently quickly to be useful by the receipient. - 


~ Real Time System = 


A. system performing computation during the actual ‘time the related 


‘ohysical process transpires, so tnat the results of the computation can be 
- used in guiding the process. - x" 


Registry Data Base ; : 
USIS files defining user profiles, user guides for COINS files, 


lansuages, and Host systems, and training courses. 


Remote Job Entry ; ; ae 
1. Suomission of Jobs tnrougn an input device that has access to a 


' computer through a communications Link. 


2. The mode of operation that allows input of a batch job by a card 
Treader at a remote site and receipt of the output via a line printer 


. OF Card puncn at a remote site. Abbr: RUE, 


Response Time : : ; 
The elapsed time between the generation of the last character of a 


'- message at a terminal and the receipt of tne first character of the reoly. 


It includes terminal delay, network delay, and service node delay. This is 
the time the system takes to react to a given input. If a message is keyed 
into a terminal py an operator and the Teply from the computer, when it 


“comes, is typed at the same terminal, Tesponse time may be defined as the 


time interval pnetween the operator pressing the last key and the terminal 
typing tne first letter of the reply. For different types of terminals, 
response time may be detined simarly. It is the interval between an event 


and the system’s response to the event. 


Rule-directed Interactive Transaction Agent previously known as Rand 
Intelligent Terminal Agent. A System designed for use by persons who are not 
computer sopnisticates to develop agents(computer programs) to perform 

tasks in an automated fashion. It is ubder development by Rand and is 
experimentally operational. ; 


RJE e : 
Remote Jop Entry 


Routing 
The assignment of the communications path by which a message or telephone 
call will reach its destination. ; 


RTP ! 
Real time Protocol. A hest-to-host Protocol for communication of time 
critical information. 


RYE/TIPS 
The wSA host system housing the NSA COINS tile, 


SAFE 
Susport to the Analyst’s File Environment. A Joint CIA/DIA effort 
te develop new analyst automated Support systems for both agencies, 
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ee sf inc eS, 


SNCS _ 


' protocol. 


sccu . ie. 
noredse at Single Channel control Unit. 


scl 
Sensitive Conpartnented Information, 


SDI : 
Selective Dissemination of tnéonmation: 


Seawatch pe 
NOSIC’ s automated ocean ‘surveillance system. 


- Security ‘Administration 


Tne process of deciding which individuals need access to classified 
information to perform tneir duties; the verfication of clearances and the 
entry and maintenance of the user/terminal on network and application eccess 


and authorization lists. 


Security Classifications 
The national classification system of Uncllassified, consrcenieert 


" Secret, Top Secret. 


"Server“Host 

A host wnicn makes available @ resource (nardware, software or data) 
to other hosts or users not connected directly to itself. NOGes @ host can 
be a “user” nese ora eer yer " host or both. 


SIP. = fES ee fat OD, tH, 
; Autodin Il SEqReRE:: Interface Protocol. | 


Secure Network: Communication Systen. Tne communications. network Reactcn 


of COINS II. 


Software. PS : : 
Computer programs, Suceedueee; rules and associated 
documentation concerned with tne operation of computers, @.9., 
compliers, monitors, editors, utility programs. - 


SOLIS , 
Sigint On Line Information System. 


Source ; 
_ i. The point of entry of data in a network. 
2. A data terminal installation that enters into a connected channel. 
Data entry may be under operator or machine control. 


eoace Shuttle 


A diagnostic. system which Gs used to test network hardware and neasure 


“througnheut. 


Special Purpose Gateway 
A gateway implementation wnicn is not based on a standard internetwork 


. 


SSB 
Air Force Standard Sottware Base. 


Standard Internetwork Gateway 
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A gateway implementation whicn is pasea on a standard internetwork 


SREGEOCOR Ce eTeieTCE/IFI 


Subseriber-to-Transport Protece! 
Detines network intertace between subscriber (host) ‘snd transport 


_facility.. 


Support Procrans in ieee <<a 
Programs to assist in diagnostics, testing, data generation terminal 
simulations, etc. are support programs. An . 


The COINS network identifier for the Arlington Hall switch. 


TAC a _ ; 
mueeene Tt pereenat Access Controller. 


_ TAC II 


Technical Reaeasnene of the COINS [I Program Ad Hee Group of NSASAB. 
TAS . . 
COINS II Unix-based Terminal Access System. 


“TASMASTER 


A special user who operares and maintains TAS. 


T-Carrier 
AT&T alledigital transmission eugeene. italia at various data rates - 


_ 46544 mb/s (Te1), 6.312 mo/s (T+2}), 45 mb/s (T-3) and 274 mb/s (T#=4), 


TCP 
Transmission Control Protocol. A connection~oriented, end=-toeend 
reliable protocol designed to fit into a layered hierarchy of protocols 


which support multi-network applicztions. 


TDP 2 
Technical Development Plan. 


Toss Exenange Center. 


Telenet ; ae : a a ahs : a 


The ARPA Network virtual ‘erminal protocol... 


Thesaurus Data Sase 
Usis files containing cross reference to data values collected from 


_ warious sources. These files contain data for military equipment , geographic 
_ locations, and intelligence category codes. 


Tetrahedron 


A secure, digital communication network in the Washington, D.C, area 
which utilize wideband circuits. 
Text > 
1. Information consisting mostly of words that are readable by a 
person. 


2. A sequence of characters torming part of a transmission whien is~ 


sent from the data source to the data sink, and contains the information 
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< to be conveyed, It may be. pieceaen by a. header and followed by an “End of 
, Text" signal. 
-3. In ASCII & communications, a sequence of characters, treated as an 
entity if preceded by a “Start of Text” and followed oY an mene of Text’ 
control character. ' 


THe ; ; . oh 4 ; 
Autodin II Terminal-to-Host Protocol. 


TILE : a ies ; : 
TIPS Interroqation Language. The retrieval language used to interrogate 
the NSA RYE/TIPS COINS tiles resccent on the Univac 494. 


Time Sharing 3 : , 

A method of oeeacton. in whiten a computer facility is snared by several 
users for different purposes at (apparently) the same time. Although the 
computer actually services eacn user in sequence, the high speed of the 
computer makes it appear tnat the users are all handled simultaneously. 


TIP ae, : 

Terminal Interface Processor, A Honeywell H316 computer acting both 
@s an IMP and as a2 host computer to enable terminals to connect to the 
network without a seperate Host being involved(ARPA). The TIP software 
is one host but other Hosts may be connected to the network via the ideal 
portion of the TIP. 


TIPS ; , a , : 
Technical tiserwetion Processing System, That portion of RYE/TIPS 
which supports peers COINS files. 


C .  TOCcOoL 
Re: . -. Topics. on “COINS ON-Line. 


TOSS : 
Terminal oriented cooper System. 


Transaction Mode : : , 

The interaction between a user and the system in whien no donnectien 
is established between the user and the system process which is to provide 
the service. Tne request for the service, or Transaction, is accepted 
by tne system and forwarded to the user service which satisfies the request 
» the results of which are retained by the Syste for return to the user 
upon demand. 


Transparent Mode 
Transmission of binary data with the recognition of most control 
characters suppresed. In Binary Synchronous Communications, entry to and 
exit from tne transparent mode ts indicated by a sequence beginning with 
- @ special Data Link Escase(OLE} character. 


Transponder 
A diagnostic system wnicn is used to test the COINS II Network Control 
Program and measure throughput. 


Transport 

‘Tne telecommunications ‘facility which moves pieces of information fron 
one place to anothner.(i.e., subnetwork, backbone, packet switching faeility,. 
etc.) 
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decnnGiogy Transfer Reasearch Facility.. A facility directed by the Corns 
PMO to test and evaluate programs, santyeenc and software ‘that aay improve 
the service. to COINS re ea : 


Transport Protocols | ate ee a: : 
Suonet protocols used between transport facility pecket switch nodes 


to handle Srenemtsstons error ‘Setection, correction, flow control, routing. 


. Turnaround Time 


1. Tne elapsed time between subeiss ion: of a job to a computing center 
and the return of the results.. 
2. In communications the actual time required to reverse tne direction 


‘of transmission from sender to receiver or vice versa when using a 
_ Cworway alternate circuit. Time is required by line propagation effects, 


moden ereens and computer reaction. 


UDL 
Uniform Data bansuace giScertes by ADAPT. The retrieval eaaguegs used 
as the pasts for ADAPT, 


UNIX “ 4 e <3 es 
Tradmark for a family of computer operating systems developed at Bell 


' Telepnone Laboratories to support time sharing on the PDP {1 computers. Unix. 


was Spawned from tne Multics program in the late "60s". 


"User" Host 
-A host wnich ‘support user access to a server host. 


USISS 
User Support Information Sub-system. (Replaced by USIS)> 


Virtual Circuit (VC) 
A connection between a source and a sink in a network that may be 
Tealized by different circuit. configurations. during transmission of a 


message. . 


 Windmil2- 


A host computer system (87700) on the COINS TI Network which supports 
the SOLIS and PROJECTOR (TIPS/RYE) applications. Also a host in Platforms 


weMCCS 
worldwide BLASP OLY Command and Control. System. 
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I.. DESCRIPTION 

This Annex includes 1) x COINS Network Management System (CNMS) 
which is perceived as a system of hardware, software, and procedures 
to operate, control, and antes the COINS; and 2) the human resources 
in the COINS PMO required to operate and manage the COINS project. | 
COINS Project Management is presented in Section I and VII only. 

The COINS Network Management System has. been conceived to pro= 
vide the data, processing, and display of information required to 
operate, control, and manage the COINS Network and its associated 
services. The system will support long-term management and planning — 


as well as the day-to-day activities associated with network opera- 


.tions. The focal point for the CNMS data collection, processing, 


and display is the COINS Network Control Center (CNCC). -, 

A NMS Components 

Three categories ef information have been identified to 
support the COINS Network Management: monitoring, usage, and 
user. The three susbsystems identified to collect, process, 
and display the collected information are the Network Monitoring 
Subsystem (NMSS), the Network Usage Information Subsystem 
(NUISS), and the User Reporting Subsystem (URSS). Two computers, 
the Network Control Computer (NCC) and the Network Management 
Computer (NMC), have been identified to sippott those subsystems. 

1. The Network Monitoring Subsystem (NMSS) 

The Network Monitoring Subsystem (NMSS) is the part 
of the CNMS that coordinates and controls the network's 


performance activities. 


A-1 
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The Network. Monitoring Subsystem (NMSS) will collect 


all of the network monitoring activity into one subsystem. 
It includes what was formerly known as the Communications 
Monitoring Subsystem (CMSS), and the functions for moni- 
toring the local hosts. 
‘The components of the network to be monitored include: 
(1) Communications Processors (IMPs) 
(2) COINS Access Systems (CASS), f.e., 
Host Access Systems (HASs) 
Terminal Access Systems (TASs) 
Network Access Systems (NASs) (Gateways) 


(3) Host Processors 


(4) Communication circuits and associated equipment 
including COMSEC devices 


The NMSS software now is a subset of the on-line Net- 


work Control Computer (NCC) software. The NCC (Honeywell 


316) receives performance data from all IMPs on a timed 
periodic basis, and suapates Status reports of communica-— 
tion network status that are printed on-line on the Logger 
Model 33 Teieene attached to. the NCC. The NCC also re- 
ceives diagnostic data from the network and produces re- 
ports on the Sumnary Model 33 Teletype attached to the NCC. 

The monitoring activity, currently limited to the 
IMPs, will be expanded to include the COINS Access Systems, 
the host processors, the status of interfaced networks, 


and the communications. Monitoring the COINS Access Systems 
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will be accomplished. directly with the nec as with the IMPs, 
Monitoring the host processors and interfacing networks 
will be accomplished via the Bost Access System (HAS) and 
the Network Access System (NAS) Sacatiyele. The communi- 
cations monitoring will be scoubttahed tuesuen been Rooe: 

Monitoring will include reports of throughput dati as 
well as status reports and error reports; e.g., transmission 
errors, retransmissions, and unusual delays. 7 

Figure 1 presents the general data flow for the COINS 


Network Management Systems. 


(a). Local host monitoring will monitor hardware, 

software, and communications facilities associated 
with a host. The monitoring will be performed in 

veal time, identifying faults and monitoring 


operational thresholds so that they can be quickly 


- evaluated and corrected as needed. The purposes 


of the local host monitoring activities are to 
keep a status on the host resources, and to de- 
tect malfunctions and to trigger corrective pro- 


cedures. The local host monitor functions will 


‘be accomplished by the NCC and Host Access System. 


Findings will be reported to the local host 
manager and to the COINS Network Control Center. 
(b) Communication Monitoring - DECK ROOF (or a 
austuseoey will be installed in COINS to monitor 
the Tl (TETRAHEDRON) network and COMSEC devices. 
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FIGURE 1 
INFORMATION FLOW 
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‘The design fictades provision for special ~ 
monitoring information to be provided to the NMSS 
(on an exception basis) of any COINS-related mal~ 
functions or other significant. events. 
’ DECK ROOF was started in response to a re- 
quirement from the COINS PMO to NSA/T to develop 
a real-time capability to monitor all Tl communi-— 
cations facilities associated with COINS II and 
report problems. The project was expanded by 
NSA/T to include the monitoring of all NSA com- 
munications facilities including COINS. 
2. The On-Line Network Usage Information Subsystem (NUISS) 
The On-Line Network Usage Information Subsystem (NUISS) — 
collects and integrates system logs for each host and 
switch and tabulates information on usage, operating 
performance, responsiveness, and reliability of COINS. 


_3+ COINS User Reporting Subsystem 


The COINS User Reporting Subsystem will provide the | 
mechanisms for users, managers, and syste personnel to 
comment on their experiences with the COINS Network and its 
accessible resources, to suggest changes to the network and 
accessible resources, or to suggest new capabilities and 


services. 
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Included in the design concept is a mechanism to 
Gu , ‘assure that all comments and suggestions are responded to 
( | by the responsible organizations. : Ns - ; = -- 
as - Another facet of the deste concept is - aupeek 
general and selective aiever< to whiter comments. These’ 
surveys will be conducted by the COINS PMO but: the impetus 
for such surveys may be provided by any organization re- 


lated to the COINS Network. 


t 
1 
| 
{ 
| 
| 
4. The Network Control Computer (NCC) | a 
{ 
t 
{ 


The Network Control Computer (NCC) supports remote 
diagnosis and software maintenance. Diagnostic and statis- 
. tieal data from each of the IMPs are automatically reported 
to the NCC approximately every minute. When network deg- 
radation is reported, background programs can retain control 
C . . of. the network, isolate equipment failures. from icra toa . es 
. e tions line trouble, and perform many kinds of recovery. 
From the Network Control Center, it is possible to reload 
_ IMP software throughout the entire network. It also per- 
forms and coordinates troubleshooting activities in COINS. 
At present, the NCC operators use three different consoles 
to perform their operations and control functions. It is 
planned to automate these functions while operating from = 
one console. 
'.. The sbdolets NCC H316 Computer will be replaced by a 


BBN C/70 Processor. At the time of the C/70 implementation, 


Ione C/70 is a processor based on the BBN Microprogrammable Building 


Block (MBB) architecture. The BBN C/30, also called the MBB IMP, 
C will replace the H316 IMPs. 
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(. extensions to the ionitcHing system will be initiated to 
cover all COINS Network gatos Sompenentes: Also, the moni— . 7 
toring. data will be transferred to the NMC for maintaining | 

-a history file, developing trends, and providing Management 
reports. Concurrently with the BBN C/70 installation, all 
network operations, diagnostics, tests, and corrective 
action- will be accomplished at a single integrated console. 
The console will include CRT displays (graphic and alpha- 
numeric) as well as hardcopy output. 


5. Network Management Computer (NMC) 


With the upgrading of the NCC Computer, a second 


BBN C/70 processor will be installed to process the moni- 
€ ; toring and throughput information, to collect and process 
: the usage data in sumpore et NUISS, and to collect, process, 
and retain information in support of the User Reporting 
Subsystem. The NMC will also be used to develop, eee. 
validate, and verify software for the NCC and NMC and will 
function as a backup for the NCC. 
B. COINS Project Management 
COINS project management is described as management, opera- - 
tions,.and user support. 
The management activities aoe 


Program Planning and Budgeting 
Contracting and Contract Monitoring 


Inter-Agency Coordination 


C " 
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Identifying User Requirements 
Configuration Management 


Serving on Various Community Committees and 
Ad Hoc Working Groups 


Developing, Implementing, and Monitoring 
Appropriate Security Procedures 


The management activities are expected to change little in 


the next five years and, therefore, the management staff will 
remain relatively static. 
The operations activities are: 
1 
Operate and Arrange for Maintenance of the 
Equipment Located in the CNCC: IMPs, NCC, 
NMC, NSH, TTRF, and associated peripheral 
devices. 1 
Identify and Correct Network Faults. 
{ 
| 


Maintain Accurate Status of the COINS Network 
and its Components. 


Coordinate Error Detection and Correction with 
Other COINS Participants. 


Maintain Physical Security of CNCC. 


Validate and Verify New or New Releases of 
Network Software and EaSieate: 


ioeeian Procedures for All Aspects of Operations. 
The COINS Network is now operating 17 hours per day (0600- 
2300) Monday through Friday excluding holidays. It is planned 
to increase the operations staff and to extend the period of 
operations to 24 hours per day, seven days a week including 
holidays. 
| The user support activities are: sais 7 3 - 


Develop Training Courses. 


A-8 
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Conduct Training Courses a - Bes 


Assist Users in Accessing COINS Resources 


in 


Determine Courses for User Problems and Taking 
Corrective Actions 


Informing Users of New and Changed Resources 
and User Guides 


Coordinating Training Requirements with 
Participating Agencies 


With the addition of new users brought about by the increased 


accessibility of COINS through TASs, new host computers (DODIIS) 


and interfacing networks, the work load on the user support will 
increase dramatically over the next two-three years. The situa- 
tion will be worsened with the addition of new hosts and their 
attendant resources and different methods and procedures. The . i 
situation will change little until 1986 when person-to-person 
training will give way to the automated User Support Information 
System using Computer Aided Instruction (e.g., CDC PLATO). It ; 
is expected that the user support staff can be reduced at that 
time. 

II. LONG-RANGE OBJECTIVES . 

' The goal of the CNMS is to provide timely accurate information 

in a useful form to network managers: to perform the day-to-day 

management of the network, to maintain a data base of performance 

and usage data for ener analysis for short- and long-range planning 

of qualitesive ani quantitative improvements, and to detect degener- 

ating conditions in the network. 
The long-range objective is to develop and implement a fully 

automated on-line system for the collecting, editing, analyzing, and 
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reporting nator anes enceuce. This information will be mee by the 
COINS PMO to monitor the network. operations and performance, and to 
assess. the utility of the COINS II Network to the end users of the 

COINS accessible services. - Subsets of the information will be pro- 
vided to the agencies involved with the COINS PMO for their informa- 

tion, evaluation, and action, and to support their resource management 
and budgeting decisions. Further, it is an objective to automatically 
parte fault diagnosis and fault correction to the maximum extent 
practical. 

It is recognized that this objective will not be achieved in a 
single giant step but rather will be achieved gradually over the years. 
It is disco recognized that: while incremental improvements are being 
¢ defined, develooed; tested and implemented, existing procedures and 
methods must be maintained in an operational status. 

ITI. JUSTIFICATIONS 

Management is.a priori requirement for a system as valuable and 
complex as the COINS network. The network is both complex in its 
operations and in the development of capabilities to satisfy the users’ 
needs. To eliminate or at least minimize the false or misdirected starts 
in seigees user needs, monitoring the qualitative aspects of COINS 
accessible services is just as important as the quantitative aspects. 
Timely and accurate information about the network, its accessible 
services and user satisfactions is required to do the cost-benefit 
analysis necessary to allocate scarce resources to improve existing 
services, to increase capacity of existing services, and to provide 


< “4 new services. 
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Failure to collect the needed information to present it in 


usable form, to analyze it, or to act on the acquired knowledge will 


“result in the deterioration of the existing services, ignoring user needs 


by not improving or developing capabilities, or by providing inappropriate 


. capabilities or inappropriate changes. 


The development program for the CNMS is in direct response to the 


. ASD(I) Review Group Report. on the Evaluation of the COINS Experiment 


dated 1 February 1973. The review group recommended that: 

"Present COINS reporting procedures be modified to allow 

the collection of statistics more amenable to permitting 

evaluation of system usage, timeliness, and effectiveness. 

The COINS Project Manager should be directed to submit a 

plan for statistical reporting which would (a) identify 

the objectives of such reporting (i.e., what must be 

- learned about. the system), (b) the items of data to be 

collected to satisfy the objectives, and (c) the analysis 

to be performed on the data to provide the desired 

information." 

IV. FACTORS BEARING ON THE PLAN 

A. Facts 
1. Most of the service host computers are not owned by the 
_COINS PMO and, therefore, are not under the COINS PMO control.” 
As an alternative to the host reporting status data every n 
seconds (the preferred mode), the local host status data 
will be derived by sending appropriate messages to the host 
system and evaluating the responses. These monitoring ac-— 
tivities will be accomplished by the NCC and the Host Access 
Systems and preclude the need to modify the host computer 
system to support COINS monitoring. A similar procedure may 


have to be adapted for interfacing networks. 
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2.. With regard to the minteorag of the TETRABEDRON network 
and COMSEC devices which are being monitored by the DECK 
ROOF system currently under development, the NMSS must con- 
‘tent itself with that data which will be made available by 
these developers and managers of DECK ROOF. 


Assumptions 


1, It is assumed that the DECK ROOF manager will provide the 


data necessary for NMSS to operate, control, isolate malfunction- 


ing components, and to inform users and managers of outages or 
pending outages of all COINS major network components. If this 
peeiaseton proves false, a complete status of the COINS Network 
‘may not be available and will reduce the fault isolation ability | 
of the CNCC. 2 
2. It is assumed that the DODIIS hosts attached to the COINS 
Network will be attached, monitored, and require the collection 
of usage data ie iene as COINS hosts. If these host computers - 
are to be treated-differently, the difference mst be known 

to reflect them in the design of the CNMS. See ISSUES, para- 
graph IV.C. following. 


Issues 


The COINS Network has been designated (at least informally) by 


DIA to be the Washington, D.C. area network for DODIIS. As such, the 


DODIIS hosts in the area will be attached to the COINS Network in the 


same fashion as COINS hosts; i.e., through a Host Access System. It 


is not known at this time if the CNMS will be required to collect, 
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. process.and store the same type of dnformation for the DODIIS © | 
oo asstins asa planned’ for the COINS hosts. Also, it is ace ia 
known how many DODIIS hosts will be attached to COINS. 
: If this issue is not resolved, a choice must be nade relative 
to how to treat the DODIIS hosts in the subsystems - the choice may 
be wrong necessitating redesign and reprogramming. 
Vv. APPROACH 
The approach to meeting the long term objectives of the CNMS will 
be evolutionary because current systems and procedures must be maintained 
in an operational mode as new hardware, software and procedures are de- 
veloped and implemented. | ca 
c. A. .Network Monitoring Subsystem (NMSS) : : 7 ES 
€ With the delivery and installation check out of the NCC BBN C/70, 
the IMP monitoring functions now accomplished by the H316 will be 
converted to the BBN C/70. Following the H316 to.C/70 conversion, 
the monitoring will be extended to include the COINS Access Systems 
(HAS, NAS & TAS) and the server hosts that are attached to COINS 
with a Host Access System. Concurrently, arrangements will be made 
with DECK ROOF system to send communication and COMSEC status data 
to the NCC for integration with other network status data. 
Monitoring and throughput data collected by the NCC will be 
passed to the Network Management Computer (NMC) for storage and 
for analyses to determine if chronic problems eet or are de- 


veloping in any of the components, and to support trend analysis 
C A-13 
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of the components and sets of components. In the ARPANET, 


processing of historical (longer than most recent 24 hours) 
monitoring data is accomplished in the DEC PDP 10 computer at 
BBN. These processes were never implemented in the COINS Net- 
work because of a shortage of computer resources, With the 
installation of the BBN C/70 as the NMC, the processing of © 
Adetoricall monitoring data and traffic data will be initiated 
on the COINS Network. Also, the monitoring and traffic data. 
will be correlated with eaee data to determine if poor perfor- 
mance on any set of major components show positive correlation 
exists between usage and poor performance in order to determine 
and implement appropriate corrections. 

B. Network Usage Information Subsystem (NUISS) 

The first step in the evolution of the NUISS nae been 
Started, i.e., the network usage information processing is being 
moved from the IBM 370 system (not a COINS host) to the COINS 
Network Service Host (NSH), PDP 11/70. The system logs are 
still processed on the IBM 370, but some of the files extracted 
from the logs are manually transferred to the NSH to prepare 
the reports needed by the COINS PMO. 

This migration will continue util all processing is accom— 
plished on the NSH including the initial processing of the 
system logs. It is anticipated that all NUISS processing will 


be accomplished on the COINS NSH by the end of FY 1981. 
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The feasibility of collecting the system logs automatically 
from the COINS access systems has been demonstrated. The capa~ 
bility will be implemented as the network hosts adopt the 
COINS II Host Access System (HAS) as their network interface. 
This transition will be completed by 1984. 

Concurrently with the IBM 370 to NSH migration and implementation 
of automatic log collection, a BBN C/70 micro-programmable processor 


will be installed (end FY81) to perform the collection, processing, 


"storage and display for the CNMS including the NUISS. Beginning 


in FY82, the processing for NUISS being done on che NSH will 
migrate to the BBN C/70 NMCS computer. The software development 
for processing NUISS data on the NSH will be compatible with the = 
BBN C/70 and can be transferred with little difficulty after the 
C/70 has been installed and checked out. 
C. User Reporting Subsystem (URSS) 
The User Reporting Subsystem does not exist in any structured 


way in COINS. A pilot system will be implemented during FY81 to 


evaluate the concept, establish the design characteristics of such 
@ system, and to determine how it should be implemented. Assuming - 
the pilot system evaluation results in a decision to provide a User 


Reporting Subsystem, an initial capability will be developed and 


implemented on the CNMC BBN C/70 starting in FY83. 
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STATUS AND PLANS 


A. Network Monitoring Support System (NMSS) 


Network monitoring is presently maintaining the status quo — no 


ervelopsent effort is ongoing. A capability specification is 


being prepared for extending the monitoring to the COINS Access 


Systems and the server host computers. Current plans call for 
BBN to design and program che extensions for the BBN c/70, and | 
to deliver.the monitoring software with the hardware late in= 

FY81. Likewise, a capability specification for the processing of 

network monitoring data comparable to the capabilities provided 

by the DEC PDP 10 computer at the BEN ARPANET Control Center, 

will be presented to BBN so that the software to process historical 4 
status and traffic data will be delivered with the BBN C/70 late 

in FY81. 


I 
[ 
Enhancements to the NMSS will be deveroped in FY82 through 
FY84 to provide the host monitoring functions and further enhance— | 


ments if experience indicates their need. 
B. Network Usage Taftommacion Subsystem (NUISS) 

The processing of two major files, CUPA and LOST, have been 
transferred from the non-COINS UNIVAC 494 (RYE/TIPS) to the COINS 
Network Service Host (NSH). The host computer logs are collected 
Manually and processed to extract the CUPA and LOST files which 
are then manually transported to the NSH where management reports 


are prepared and displayed for information and action. 
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The next step is to move the processing of the manually collected 
system logs to the NSH where they can be aarped with automatically 
collected system logs from the COINS Access Systems. This processing 
of manually collected logs and implementation of the automatic. 
collection of the CASs system logs will be accomplished as the server 
host computers convert to using the COINS Host Access System (HAS). 
The conversion is planned for completion when WINDMILL attaches to 
a HAS in FY84. In FY82, the NUISS will be transferred from the NSH 
to the NMC. 

During FY82 and FY83, the NUISS Management reports will be 


refined and expanded to take ‘advantage of available graphics 


' capabilities. available on the Network Service Host. 


During FY84, the processing will be developed to correlate 
usage data with monitoring data. 

C. User Reporting Subsystem (URSS) _ 

The pilot User Recorenae Subsystem will be implemented in one 
or two Terminal Access Systems (TASs) in FY81 and be system 
evaluated throughout FY81 and into FY82. A capability specification 
for the URSS will be developed in FY82 and the system will be de- 
veloped for the BBN C/70 in FY83 and implemented starting in FY84. 
RESOURCES & SCHEDULE 


The following tables show the funds that have been budgeted or 


programmed and, for the out years, planned to develop, implement and 
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maintain the COINS Network Management System. The funds are those 
required for procurement and contractor support. In-house resources 


are excluded. 


A. Network Monitoring Subsystem (NMSS) 


1000 of Dollars 


€ . The FY80 and FY81 O&M funds are those required to maintain 

the hardware and software for the existing NCC H316. The O&M 
funds for FY82 through FY86 are to maintain the hardware and 
software for the NCC BBN c/70 and the NMC BBN C/70. 

The FY83. procurement funds are to purchase a console for the 
integrated display of monitoring data in the CNCC. 

The procurement funds (FY81) are for the purchase of two 
BBN C/70 hardware and the network monitoring software for the 
NCC C/70, and the software to process the historical monitoring 
data for the NMC C/70. The RDT&E funds in FY83. through FY86 
will support enhancements to the NMSS, develop software for the 


CNCC integrated display, and to develop automated diagnostic and 


( er 


ry 
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fault correction routines and to develop validation and verifica- 
tion software for the CNCC. The RDT&E funds in FY82 are to 


develop software for correlating monitoring and usage data on the 
NMC. 


. 120 120 
120 120 


The O&M funds are to maintain the software for the NUISS. The 


1000 of Dollars 


RDT&E funds for FY80 and FY81 are to transfer the NUISS processing from 

the IBM 370 to the COINS Network Service Host (NSH) PDP 11/70 and to 

implement the Heguatie collection of system logs from COINS Access 

System. RDT&E funds in FY82 will support the transfer of NUISS from - 
the NSH to the COINS Network Management Computer (CNMC), BBN c/70. 

RDT&E funds for FY84 through FY86 will be for the development of 


reaction reporting on a real-time basis. 
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C. User Reporting Subsystem: (URSS) _ : 


— | 60 60 | 60 
200 120 120 120 
SIs 


1000 of Dollars 


FY81 


“the development of a pilot URSS will be accomplished under the 
Man Machine Relationship Program which is funded by the DOD 
Advanced Research Project Agency (ARPA). See Annex C, Network 
Development. : 


€ _ The RDT&E funds (FY83-FY86) are to develop, implement, and 
eihance the operational URSS following the pilot” system.eyaluation, | 


D. Total COINS Network Management System (CNMS) 7 


pC FSO | FY8i 


1000 of Dollars 
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E. COINS PMO Staffing 


The resources for the COINS PMO are shown in terms of the 


in-house staff requirements rather than dollar resources. 


Operation 


User Support 


Staff Years per Year 


( A-21 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


se ee ‘ ange Primate pt tae ue FI ta oar ae oF 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


SCHEDULE | ne 


NMSS 


e@ Install 2 BBN C/70s 


e Test Hardware and 
Software for NCC 
& NMC 


@ Develop Correlation 
Routine for Monitoring 
and Usage Data 


e Develop Enhancements 
for NCC & NMC 


NUISS 


e Transfer Processing 
to NSH PDP 11/70 


e Implement Automatic 
Log Collection 


e Transfer Processing 
from NSH to NMC 
BBN C/70 


e@ Develop NUISS 
Enhancements 


URSS 


e Develop Pilot URSS 

e Evaluate Pilot URSS 

e@ Develop Operational : 
URSS 
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Community On-Line Intelligence System 


Project Management Office 


National Security Agency 
Fort George G 
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(~ . I. DESCRIPTION 

‘Resources as used here include the hardware and saitvare that are 
seeeiaed to the servers and users of COINS by the COINS PMO. Included 
are the Interface Message Processors (IMPs), the interfaces between 
the IMPs and host computers, the Terminal Access Systems (TASs), the 
interfaces to other networks, and the software resident in the suite 
of haraere. 

Srwaantly the interfaces between the IMPS and host computers 
consist of an Intelligent Network Interface (INI) for the RYE system 
at NSA, a Front End Processor (FEP) for the SIGINT On-Line Information 
System (SOLIS) at NSA and a Host Access System (HAS) for the New 
Data aa (NDS) at “\NPIC. See Figure 1. The INI and FEP use DEC 
PDP 11/40 soecsees with. the ELF Operating system. The HAS ieee a. 

€ DEC PDP 41/70: dompucet with the UNIX operating system. It is planned 


that all host computer interfaces will be standardized on the DEC 


PDP 11/70 UNIX HAS architecture when the WINDMILL computer assumes the 
RYE and SOLIS functions. © 
- In addition to the preceding hardware, the COINS PMO provides 

Private Line Interfaces (PLIs) to allow the use of ARPANET as a back- 

bone communications network to gain access to the COINS network. A 

PLI is installed at IPAC and one has been purchased and is scheduled 

for Lawrence Livermore Laboratories (LLL) in FY81l. 

The communications lines--TETRAHEDRON in Washington, D.C. area 

and leased or ARPANET elsewhere-—are not provided by the COINS PMO. 

“The hard wire communication between IMPs and TASs, and between IMPs 


C and host computer interfaces are provided by the COINS PMO. 


: peereae ou 
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INTERFACE 
SYSTEM HOST COMPUTER NAME HARDWARE OPERATING SYSTEM 
RYE U-494. INI PDP 11/40 ELF 
SOLIS B 7700 FEP PDP 11/40 ELF 
NDS U 1110 HAS | PDP 11/70 UNIX 


FIGURE 1 : 


CURRENT COINS HOST COMPUTER INTERFACE 
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C oo The software provided and swintained by COINS PMO includes those 
: programs resident in the ease eas: access systems, IMPs, and PLIs 
that implement the basic services of those hardware devices and pro- 
grams to provide special services directly to the users. These special 
services as envisioned today include a common query language (presently 
ADAPT), a User Support Information System (USIS), a text editor, a 
data base management system to provide a home for data files of com- 
munity interest that cannot: be made available on another COINS host 
computer, mail and message services, teleconferencing, local personal 
file storage, and data manipulation capabilities, 
Some of these may be resident in one or more COINS host computers, 
Others may be made availabie in COINS Access Systems, or COINS PMO. 
sponsored host. computers. Notable among the latter is the User Support 
4 " Information System. A host: computer to adopt homeless files could, be 
provided by the COINS PMO or another participating agency if unused 
capacity were available on the host. 
Following are brief descriptions of the COINS PMO provided hard- 
ware and software resources. 
A. ‘Interface Messagé Processors (IMPs) 
The IMPs are the packet switches to internet the host com- 
puter and COINS Access Systems on the COINS network. The IMPs 
are owned and controliled by the COINS PMO as are the programs 


residing in the IMPs, 
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~ The Intelligent Network tatartaca (INT) wnt a Front-End _ 
Beecenese (FEP)—both DEC PDP 11/40s with the ELF operating 

*patemcsanie as the COINS Network interface for the NSA RYE 

and SOLIS systems respectively. The INI and FEP will be replaced 
with a COINS Host Access System (HAS) when the WINDMILL computer 

takes over the RYE computer functions. At that time, WINDMILL 

will house both RYE and SOLIS systems. 

C. COINS Access System (CAS) 

The CAS is an umbrella name for Host Access System (HAS) 
eich is the interface between a host computer and COINS, Termi- 
nal Access System (TAS) which is the interface between terminals 
and COINS, and Network Access Svsten (NAS) which is the inter- 

€ face (gateway) betweer another network and COINS. 

The CASs and most: of the Saataant programs are provided aad 
controlled by the COINS PMO. All TAS software is under COINS 
PMO control, all HAS software including that part required to 

— 3 * interface with the fost computer is controlled by the COINS PMO, 
and the COINS half of the NAS is controlled by the COINS PMO. 
D. ADAPT | : 

ADAPT eliminates the requirement for users to learn and 
use the query language for each host computer system they have 


need to access by providing a common query language. The common 


common query language is transformed into the query language of 


the host computer being accessed: and prepares the query response 
C = 
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for display to the user. The user has the option to use the 


‘Standard language or the target system language. Batch and 


interactive. modes.are. available through ADAPT. 
E. User Support Information System (USIS) 
USIS is the central automated repository of all information 


concerning the resources on COINS that are available for users, 


and how these resources can be used. All user guides for files, 


query languages, and other resources (e.g., USIS, ADAPT, Text 
Editors, and host computers) will be available in USIS and acces~ 
sible via COINS for training and user reference. 

The key Ghatectariseice of USIS are user profiles, guides 
and training aids, authoring and a thesaurus. User profiles 
record, for each registered user, areas of interest relative 
to the resources available via COINS. The profiles are used to 
automatically inform cligraeess of changes in various guides. 

The guides are the many on-line publications that provide infor- 
mation for accessing and using the available resources. The 
training aids provide sample uses (sample queries for example) 

of the resources, and provide lesson plans for training the 

user not familiar with a particular resource. Authoring provides 
the mechanisms for the responsible individuals to prepare the 
user guides on-line. The mechanisms are constructed such that 
the format of guides are standardized and, therefore, easier to 
understand when many guides must be learned. The thesaurus pro- 


vides a cross reference of data element names and codes as they 
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are used in rhasiany Sides of the sponsoring agencies. The 
thesaurus dn this vegard Wen interim measure to alleviate the 
problems brought about by the lack of data element standardiza- 
tion. | 
F. Other User Services 
One or more text editors will provide the users with the 
capability to prepare and modify documents on-line. This capa- 
bility, coupled with mail. and teleconferencing, facilitates 
coordination and collaboration when the originators of an intélli-~ 
gence product must eadeaineee or collaborate with geographically _ i 
dispersed participants. Using the COINS Network for product 
production is more efficient than the mails or travel. 
' Local, personal file storage and data manipulation capabili- 

ties provided needed services to users who access COINS through 
a TAS and must rely on COINS accessible resources for all such 
services. 

II. LONG RANGE OBJECTIVES 
The long range objectives are to provide the servers and users 

needed hardware and software support that is more cost-effective for 

COINS PMO to provide than another member organization. Further, the 

COINS PMO will endeavor to supply these resources in such a way so as 

to encourage the use of the valuable resources ‘accessible on the COINS 

Network. os 
The aiouasrine agencies are encouraged to provide and maintain 


resources for COINS users when it is more cost-effective than can be 
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achieved by the COINS PMO. The. provision of text editing, for example, 
may be. better provided by all agency host computers and made available 


to COINS users who need the service. However, no plans exist for the 


, COINS member agencies. to extend text editing or other services, except 


for seceeoing and responding to file quacdees to users via the COINS 
Network. Many resources will be supplied by the COINS PMO because 
many COINS users access the host computers via TASs and the only com- 
puter resident resources available to them are those offered on the 
COINS Network. | 

To achiave the long range objective of cost-effective support, 
the COINS PMO plans to provide standardized access system hardware 
and standardized protocols for gaining access to any resource available 


via COINS. Standardization will lead to cost-efficiency in resource 


acquisition and maintenance. A single access command language will 


allow a user to access any COINS resource, 


A. Interface Message Processor (IMPs) 

The IMPs will be upstate? from the current Honeywell 8316 
processors to ‘the new BBN ¢/30 microprogrammable atta s The 
current H316 processers are obsolete and are becoming more diffi- 
cult and more costly to maintain. Software for the IMPs will be 
centrally maintained in the COINS Network Control Center and will 
be downstream loaded to the DPs. 

B. COINS Access System (CAS) 
| The network interfaces now being used for RYE and SOLIS at 


NSA and the IDHSC gateway at DIA will be replaced by Host Access 
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»Spntena Gad a Network Access: System wee seteioaly.. *Staadandiving _ ae 
‘ the COINS access also akan Gossitie a) chaaon mechanism to Seas 
iret access - the COINS network and available ceuvutcen: 

' The long range. plan: for. the COINS CAS is to limit their 
functionality (where practices?) to providing and. controlling 
access to the COINS Network. All CASs—-Host Access (HAS), Termi- 
nal Access (TAS), and Network Access (NAS) will provide for 
bilateral communications between their respective components, 
for access controls required for COINS Network security and for 
a precedence/priority system for use when the COINS Network or 
an accessible resource becomes overburdened. The COINS PMO plans 
to achieve and maintain uniformity of the COINS Access Systems 
and to provide and control the CASs and the software—-for which 
the COINS FMO reer accomplishing the functions of 
‘the CASs. 

_ Uniformity of hardware and software will minimize the cost 
of software development and maintenance and provide for downstream 
‘teading of software from the COINS Network Control Center. Uni- 
formity is necessary for aaintaiiing configuration control over 
the software resident in the. CASs. 

C. Service Host 

The COINS PMO service host computers in the long term will 
be attached to the network in the same fashion as other agency 
host computers; i.e., with a HAS. Where practical, the services 
now supported by the TAS that are required to support users who 
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enter the network via a TAS. will be moved to one or more COINS _ 


2 PMO service host computers or the service host: computers of 
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other cart idigating organizations. 

The COINS PMO Network Service Host (NSH) currently installed 
on the COINS Network. is being used for COINS PMO purposes--software - 
davelciment: TAS backup, software testing, and processing usage 
information. When the BEN C/70 processor takes over usage data 
processing and the User Information Support System (USIS) is 
moved to a USIS dedicated PDP 11/70 (end of FY82), the NSH will 


be used to supply services for users. 


“D. ADAPT: 


The development of ADAPT to provide a uniform information 
retrieval qenenaee is aimed at eliminating barriers to the use 
of the information available on the many COINS host computers 
that reguie fede the need to learn many retrieval languages. 
ADAPT will go neguen incremental improvement cycles based on 


user experience with each successive revision of ADAPT. 


ee 


E. User: Support Information System (USIS) 


USIS will, in the long term, become part of a computer-aided 
instruction system to provide COINS users with high quality 5 
instruction at their home work stations. At that time it is 
expected ‘that the courseware for COINS users will be prepared 
by professional instructors who are knowledgeable in the resources 


being covered. The instructors of the several intelligence 
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C ; = | schools are Likely candidates for courseware development.. ce — : 
"corns PMO will be responsible for. developing instruction programs — | os 
6 teach how the COINS Network is accessed and to teach the users . , 
how to use any unique services that are provided by the COINS 
PMO. | | . | 
The CAI version of USIS will maintain records of student 
achievements to measure the students’ ptoscews and to provide 
information for use in evaluating the effectiveness of the 
lessons and instructional material. - . 
F.. -* New Protocols 
; _The asp (cr) has directed all DoD computer networks based on 
_the packet switch technology to adapt the standard DeD Transmis— — 
C sion Control. Protocol. (TCP) for host-to-host communication and 
: the. standard Internet Control Protocol CIP) for communications 
between computer networks. The COINS PMO plans to adopt these 
protocols eee tis are asatuaves in a test bed environment to 


determine the impact they may have on throughput and to determine — 


if other software should be modified to minimize any detrimental 
mate that the protocols may have. : 
‘The need for a general File Transfer Protocol (FTP) will 
be investigated and if one is needed, it will be adapted from 
an existing FIP or a new one developed for implementation in 
COINS. The purpose of the FIP is to provide a mechanism for 


effective and efficient large volume data transfers from a host 
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to another host or to an access system. that provides file 


. services. The purpose of an FIP is not to. provide for repli- 


cating files or ‘erva sections of files on various processors 
to satiaty users desires to have their private data bases. 
Clearly, this would defeat the reason for COINS inception; 
i.e., sharing information that is maintained by the single 
agency responsible for the completeness, accuracy, and timeli- 
ness of the information. 

G. Network Virtual Terminal (NVT) 

The COINS PMO will implement a Network Virtual Terminal to 
provide for handling a wide range of user terminals on the net- 
work. The NVT will translate the individual terminal character- 
istics into the NVI representations at the processor closest to 
the eacathat (e.g., TAS) and will translate from the NVT repre- 
sentation to the individual user terminal characteristics. At 
the server end of the communication (e.g., HAS) the NVT repre- 
sentation will be translated into terminal characteristics of a 
terminal type that is serviced by the host computer system and 
vice versa. Using the NVT protocols, a wide range of terminal 
types can be used for accessing COINS resources without the need 
for each host to implement terminal handling software for each 


type of terminal. 
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He Priorizy/Peeceience: ‘ 

7 A priveity/precedancé Sraten will be implemented in COINS 
to desure that users ustves in. crisis situations are given the 
best scasibie warvite within the COINS. Presently, all users 
have equal. priority and precedence whether they be trainees or 
NMIC Watch Officers, 

The priority/precedence system will be implemented in the 

COINS Access Systems (CASs). In this way all network access to 

all resources on COINS can be controlled, however, the COINS 

priority/precedence seated cannot govern user access that is 
made directly to the host computer. 
IIL... JUSTIFICATION 

The provision of the capabilities to share. intelligence informa- 
tion among the users within the intelligence community is the keystone 
of the COINS charter. These basic capabilities (resources) are pro- 
vided through an assemblage of Interface Message Processors (IMPs), 
the communications between the IMPs, COINS Access Systems, and the 
procedures and software needed for their proper functioning. 

To this basic set, resources of community interest have been 
added to support the efficient exchange and processing of information, 
and to provide a system for COINS user support. The need for these 
resources ts mot the consequence of a sau te-apendats action, but is 
the consequence of all participating agencies collectively. For this 


reason, the User Support Information System and ADAPT are being 
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developed to address the global problems of COINS user training and 
the multiple query languages respectively... Likewise, a file transfer 
protocol, network virtual terminal, and priority/precedence are net- 
work-wide solutions to problems that are brought about (at least in 
part) by the network.. | 

A sateeci-wiae mail/message service and teleconferencing can be 
Geo tenentea an the several host computers, the COINS Access Systems 
or some of both. Implementation in the COINS Access Systems is planned 
whether or not they are implemented elsewhere. It will be less costly 
because the services need only be developed once and replicated in 
the standard access systems. Implementation in the several host com- 
puters, even if all affected agencies agreed, would require separate 

‘¢ development, implementation and maintenance for each host. 

. Further, the COINS PMO has provided and is planning on expanding, 
seevines to eave who access COINS via a TAS. The storage, processing, 
manipulation, and display of retrieved information for this group of 
users is limited to the services provided on COINS by the COINS PMO 
or to. those that can be accomplished manually, unless the hardcopy of 
the retrieved data is entered into another computer available to the 
user that can process Top Secret SCI information. Since some COINS 
users who have need to access, retrieve, and process intelligence data 
are members of agencies outside the intelligence community and the 

_ Department of Defense, COINS is the only source for automated storage 


and processing of retrieved classified data. 
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Justification for the provision of a host computer and DEMS to 


make available data files of community interest that cannot be made 


available on another COINS host is dependent on the number of such 


files and the amount of interest in accessing the data. COINS PMO 


will only provide this service if the number of files and amount of 


interest justify their COINS accessibility, and no other COINS host 


has excess capacity. 


IV. FACTORS BEARING ON THE PLAN 


A. 


Factual 


i. DIA has indicated that the COINS will be the Washington, 
D.C. area network for DODIIS. This will require a Host 
Access System for each DODIIS computer to be attached to 
COINS. The number of such hosts have not been determined, 
and therefore, program planning and budgeting cannot be ; 
accomplished. Also, it is not known to what extent the 
DODITS system guides, file guides, etc. must be included 

in. USTS. 

2. During the transition of IDHSC to AUTODIN II, a gateway 
between IDHSC and AUTODIN II will not be developed. COINS 
will provide the communication link for AUTODIN II sub- 
scribers to access IDHSC hosts and vice versa. COINS must 
provide sufficient capacity at both gateways to handle the 


traffic until the transition of IDHSC to AUTODIN II is 


completed. 
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- in COINS will be replaced with the DoD standard Transmission | 


Control Protocol. (TCP4), and the DoD standard Internet Pro- 
tocol (IP) will be implemented in COINS. The impact of 
these changes must be assessed to determine if other COINS 
software must be modified to accommodate the new protocols 


and maintain efficient operations. Initial indications 


are that a different version of the UNIX operating systen 


may be required by the COINS Access Systems—TASs, HASs, 


and NASs. Also, the NCP of the ELF poneacine system based 
INI and FEP will not be changed to TCP4, A method must 
be developed to allow the coexistence of NCP and TCP4/IP 
in COINS. | 
4. There is no precedence/priority system in COINS. In 
the event of a crisis resulting in a heavy load on one or = 
more COINS resource or host computer, there is no mechanism 

_ whereby the users who have the critical need for service 
can be given preferential treatment. 

B. Assumptions 

1. The DODIIS computers to be attached to COINS will be 
COINS hosts; i.e., be interfaced with a COINS Host Access 
System and use the COINS protocols. See paragraph IV A.l., 
preceding. If these hosts are not interfaced via a HAS or 
other protocols are implemented, special arrangements must 


be made for their attachment to COINS. 
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2. Users who access the COINS. from a TAS will require 
- COINS-provided special services for the storage, processing,,. | 

aad diaplay of retrieved data. Also, services provided for 

universal use that can be provided more cost-effectively 

by COINS will be developed and implemented by the COINS 

PMO. 

Ie this assumption is false, development programs and. 
contracts must be curtailed depending on the inaccuracy of 
the assumption. 

Cc. Issues 
The number of DODIIS hosts to be attached to COINS is not 


known. The number of hosts and the schedule for joining COINS 


< : must be established in order to plan, program, and budget for 
| the hardware and software acquisition. The delay in establishing 
the number and schedule could result in unacceptable delays in 2 
attaching the hosts to COINS and delay the transition of IDHSC 
to AUTODIN IIL. 
V. APPROACH 
The approach to meet the long term objectives of the COINS PMO 
is to evolve modularized hardware and software for the IMPs, COINS 
Access Systems, and COINS PMO Service hosts so that functions may be 
changed, added or deleted on any component easily with minimum impact 


on the component and other components in the network. The functional 
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description of the COINS presented in Part II, COINS Architecture, 
will provide the basis for modularization. 


This approach will provide for the addition, modification or : 


deletion of functions on a universal basis (alg ad access systems), 
a subset (e.g., all terminal access systems), or on a single component. 
(one access system). In this way components can be tailored to meet 
specific requirements without sacrificing the advantages of standardi- 
zation. ; 

As mentioned, the approach is evolutionary, and probably will | 
not be completely implemented until the end of the 1980's. To accom- | 
plish the degree of modularity required, hardware and software must s : 

C be implemented whose gectibectare is supportive of modular implementa- 

tions of the required functions. 

A. Interface Message Processors (IMPs) 

The functionality of the IMPs has remained static since the 
packet switching technology was adapted for COINS. There are no 
plans to change the functions being performed by the IMPs. The . 
Honeywell H316 processors will be replaced by BBN C/30 processors. 
The BBN C/30 is the smallest system available in the BBN micro- 
programmable Building Block line of computer systems. If the 
functions assigned to the IMP were increased, the C/30 capacity 
and capability could be easily enhanced to accommodate the 


increase. 
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B.. COINS Access Syst:ems (cass) 

Of all the components of COINS, the COINS Access Systems 
will. benefit most from a modular/functional approach to accom- 
plish the delivery of COINS network services. The Terminal 
Access System (TAS) as presently configured, is a relatively 
large DEC PDP 11/70 system at approximately $250,000 per copy 
for hardware. The number of TASs will increase from two to six 
over the next two years and perhaps more in later years, but no 
firm projections have been made. The current TAS is configured 
to provide many services beyond those required for terminal 
access and its configuration does not easily support tailoring 
each TAS to the needs of the organizations and individual users. re 
Ideally, each service (or perhaps logical subset) would be main- 
tained in a standard configuration and provided to those access 
systems that have need for it, Likewise, any special hardware 
for a service would need to be part of the TAS only if the ser- 
vice was installed. The general purpose hardware, e.g,, memory 
and processing power and terminal ports, would be sized for each 
TAS installation. The modular approach to network services will 
provide for structuring a minimum TAS (hardware and software) 
when only terminal access support is needed, and will provide 
for a TAS that looks more like a service host, if such is re- 
quired, without losing control of the configuration of the hard- 
ware and software and still take advantage of reduced costs 
afforded by standard hardware and software acquisition and main-~ 
tenance. 


Approved For Release 2003/08/18 GIA-RDP83T00573R000100140001-8 


a eeegpennmenee le 


a eR 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


Even if hardware cost’ becomes an insignificant part of 
the total cost, a functional modular approach to the hardware. 
and ser tears architecture will minimize the impact of software 
changes in one function on other functions, and will facilitate 
the changing of software to firmware and vice versa when de- 
sirable. 

The same advantages apply to the Host Access Systems (HASs) 
and Network Access Systems (NASs), but perhaps not to the same 
extent. To date, only one HAS has been installed and, although 
a gateway exists between IDHSC and COINS, it is not. a COINS 
standard. With such little experience, the functions that may 
be optional for a HAS or NAS cannot be known with much confidence. | . 
In some instances, however, a HAS may also provide for terminals 
to access the COINS network through the HAS. This will require 
some of the TAS services and hardware to be installed in the HAS. 

Similar situations may prevail with the NAS. It is expected 
that the. need for a modular NAS will be clear if the envisioned 
local office networks with wide variations in their capabilities 
and protocols are attazhed to COINS via NASs. Some with a rich 
assortment of services will use a minimal NAS, with others the 
NAS may be the best location to provide needed services normally 
associated with a TAS. 

The NAS design in total requires collaboration with the 
gateway designers of the other network. It is not clear if the 


COINS PMO should be responsible for developing software to 
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translate from COINS to.what is expected by the other network 
or to ivahalate from. other se COINS, do both oe neither, _ The 
assigned vesnoieibil sites (to COINS PMO and other networks) will 
most likely be different for different networks, 

The first steps in the evolution to a modular architecture 
for-hardware and software will be to upgrade all COINS host in- 
terfaces to standard Host Access Systems, to provide a functional 
description of the NAS, and to develop a design for the COINS 
half of the system. Many functions (at least at the less detailed 
levels) for all access systems are the same; for example, access 
control, monitoring and usage reporting. For this reason, a 
functional description of each access system will be prepared 
in order to select a single hardware architecture to satisfy 
all COINS Access Systems, 

Once an architecture has been established and the basic 
design is developed, suppliers can be identified to provide the 
standardized, modular hardware and software. 

tthay: if the downward trend of hardware cost continues, 
the implementation of redundant CASs will be considered to improve 
‘(reliability especially for hosts access systems and network access 
systems. 
Cc. Sezuiae Bosts ; 

woe implementation of the User Support Information System 
(USIS) on a dedicated computer in FY82 and the transfer of 
the Network Usage Information Subsystem (NUISS) to the Network 
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Management Computer in FY82, the Network Service Hoat (Neuy will 
be free to offer services to users. The NSH will initially pro- 

| vide the capabilities for users to keep personal files and pare 
form text editing functions on the personal files. As a follow-on, 
a Data Base Macswenene’ Sydten (DBMS) will be installed on the NSH 
for local file retrieval and data manipulations. 

In addition to the NSH, the installation of the CIA RECON 
host will provide for implementing files of community interest 
that are sponsored by agencies that do not sponsor a host on 
COINS. It is expected that the CIA RECON host will be installed 
in FY85 although a schedule has not been established. 

D. ADAPT 

ADAPT II will be ready for evaluation beginning in FY81,. 

It will be installed on one or more TASs for use by the persons 
supported by the TAS and by COINS PMO personnel. The evaluation 
is expected to be done over a 12-month period. During the evalua~ 
tion, minor changes will be made to enhance the utility of 

ADAPT II. 

During the evaluation a specication will be prepared for: 
ADAPT III based on user experience with ADAPT II and identified 
additional capabilities. ADAPT II will continue to be used in 
an operational environment during the development of ADAPT IIt 


which will be evaluated in a fashion similar to ADAPT II, 
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E. User Support Information System (USIS) 
A USIS pilot system will be installed on DEC PDP 11/70 


computer in the COINS PMO, The pilot system will be used during 
FY81 to assess its benefits and to develop a specification for 
a production model of USIS (USIS-I), assuming that the USIS 
benefits can justify the cost of its development. The develop- 
ment of the production model will take place during FY82 and 
FY83. 


USIS-I will not include an on-line computer-aided instruc- 


tional (CAI) system. The incorporation of USIS. into a CAI sys- 


tem will be considered during the USIS-I evaluation when a 
suitable CAI system can be identified for use on the COINS. Network. 
At this time, it is not clear if USIS will be complemented by a 
relatively simple CAI avaten ue if USIS will become one applica- 
tion on a highly sophisticated system such as PLATO, Z 


F. New Protocols 


L. Transmission Control Protocol and Internet Control 
Protocol (TCP/IP) 


The first step in adapting the DoD Standuvd TCP/IP is 
to develop a test bed to assess the impact of the new pro- 
tocols on the throughput on the COINS Access Systems, and 
to identify any needed changes in other CAS resident soft- 
ware-—notably the UNIX operating system. 

Concurrently with the design of the test bed, the 


throughput of the present Network Control Protocol (NCP) 
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access systems will be benchmarked to provide a hasis for 
the impact analysis, | 

During FY8l, tests will be run with TCP/IP and the 
version of UNIX presently being used in the COINS Access 
Systems to make throughput measurements and to identify any 
bottlenecks. The tests will be repeated with modifications 
in UNIX or other access system software to determine to 
what extent the rhsonenpat can be increased and the bottle- 
necks can be eliminated. 

Assuming acceptable throughput can be achieved, the 
TCP/IP protocols will be installed in the COINS Access 
Systems in the latter part of FY81l. 

Associated with the TCP/IP impact analysis and installa- 
tion are an impact analysis using TCP/IP and the Kernel 


Secure Operating System (KSOS), and the development of a 


mechanism to provide for the coexistence of NCP and TCP in 


the COINS. These activities are presented in Annex C, COINS 
Network Development Summary. | 
2. File Transfer Protocol (FTP) 

A study will be performed to determine the requirements 
for an FIP. There is no recognized need for-an FIP to support 
users of COINS in the current mode of operations for COINS; 


i.e., query-response activity. However, the DODIIS hosts 


to be added to COINS may have need to transfer large amounts 
of information to other DODIIS hosts. Also as COINS evolves 
to provide services beyond query-response, an FIP may be 


required. 


a 
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An FIP is now operating in COINS, but it is limited to io 


transfer between DEC PDP 11 processors. If the study re- 


veals a need for an FIP for other COINS hosts, either an 


ah ihn oe kee erate oes aS 


existing FIP (ARPANET FTP for example) or a new FIP will 
be developed. 
G. Network Virtual Terminal (NVT) 
The different types of terminals that should be accommodated by 
the NVI and the characteristics of the NVI and where the translations 
from real terminal to virtual terminal and vice versa are Guaee-etady = | 
It is planned at present to implement COINS NVT in the UNIX | 
based COINS Access Systems. Implementation of NVT for all hosts an 
will not be completed until the WINDMILL computer uses a Host Access 
‘4 System to connect to COINS - now scheduled for mid-FY1984. NVT could 
& be implemerfted in TASs and the Host Access System for NDS to provide 
a richer assortment of terminals to access NDS. However, the TAS 
terminals “Cather than TTY Model 40) could not access RYE, SOLIS or 
DIOALS because the NVI would not be recognized by the front ends or 
gateway respectively. This limited increase in flexibility for TAS 
users will not justify starting the development of a COINS NVT. 
The specification development for a COINS NVT will be undertaken - 
in FY83 with a phased implementation starting in the second half of 
” “FY84. By FY83, NVI developments for networks to which COINS will 
interface (PLATFORM and. AUTODIN II for example) should be far Se 
enough along so that: the COINS.development can take advantage of 


the ongoing or completed developments. Also, the COINS NVT trans- 


G: lation requirements for other network NVTs will be known. 
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H. Priority/Precedence 


The: priority/precedence system will be defined for: COINS 


after similar systems resident on the other networks with which 
COINS will interface are studied and evaluated. To the extent 
that the COINS system differs fee others, a translation must 
be made at the gateways for the other networks. The problems 
that may exist in assuring uniform treatment when multiple net- 
works are involved in the source-destination channel are not 
known. The procedures for the priority/precedence system will 
be spelled out and coordinated with all agencies involved before 
the system is designed and implemented. 
| thé epnten Siti te implemented in the COINS Aetass Systems. 
C .. This will assure uniform treatment. within COINS and will not 
= tavelve che host systems in the system development and implementa- 
tion.. Also, the system need be developed once and replicated in . | - 
all standard COINS Access Systems. 
VI. STATUS AND PLANS 
The status of the COINS Network Services range from completely 
operational. to undefined. COINS-II is an operational network aa has 
completely replaced the central switch of COINS I. All traffic with- 
in COINS is now passed via one or more IMPs from origination to 
destination. 

The ARPANET-COINS interface experiment to determine the feasibility 
of using the ARPANET as the long haul communications net between PACOM 
and COINS is still considered to be in a test phase. PACOM, however, 

< : is using the connection to submit queries and receive responses in 
support of their operational needs. 
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(~ The. same: eecreeques that | are exployed in the PACOM-COINS test 
| will be ‘implenented ‘to give Lawrence Livermore tabovatottas (LLL) | | : Nee ex 
access to COINS in an operational mode. The LLL access is scheduled 
for mid-FY81. 
A. Interface Message Processors (IMPs) 
The Honeywell H316 IMPs will be replaced by the BBN C/30 


processors starting in mid~FY81 and phased to the end of FY83. 


A BBN C/30 has been installed in the COINS network and was shown 
to be plug~to-plug compatible with the H316.. 

Five H316 COINS IMPs are now operating—one at DIA, one at 
NPIC, one at NSA, and two at the COINS PMO, plus the BBN C/30 


in the COINS PMO. In addition to replacing the H316 IMPs, two 


‘< . 2 new C/30 IMPs will be installed in mid-FY8l—one at NAVINTCOM 
and one at the State Department to support TASs. 
B. COINS Access Systems 
The COINS Terminal Access System (TAS) has been operational 
since FY78. Three TASs are now operating-—~one at PACOM. and two 
at the COINS PMO. During FY81, four more TASs will be installed— 
one each at NAVINTCOM, State Department, DIA, and LLL in that 
order. ; = 
Presently, one COINS Host Access System (HAS) is installed ; 7 
at NPIC to interface the NDS to COINS. ‘The second HAS will be 
procured in FY82 and will be installed for the WINDMILL computer 


at NSa in Fv34, 
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: Three COINS Network Access Systems (NASs) are planned for 


interfacing the IDHSC, AUTODIN II, and PLATFORM networks to 


COINS. The IDHSC and PLATFORM NASs are planned for implementa- 
tion in early FY84. Implementation of the NAS to interface ~~. 
AUTODIN II and IATIPS to COINS has not been scheduled, 

C.. ADAPT II 

ADAPT I was developed to demonstrate the feasibility of the 
Beaders taken to address the anitioreteieval problem. 

ADAPT II is being developed and will be installed in early 
FY81. Following its installation the system will be evaluated 
relative to the user interface, the utility of provided capa- 
bilities exGuere: and the efficiency of operation. 

Based on this ewaluation a specification will be prepared 
during FY81 for development of ADAPT III dicing FY82,. ADAPT IIT 
is piaind Hoe delivery at the beginning of FY83 and will be 
evaluated during FY83. 

D. User Support Information System (USIS) 

The pilot USIS will be implemented on COINS PMO DEC PDP 11/70 
at the end. of FY80. An evaluation program to be undertaken during 
FY81 will culminate in a specification for USIS-L, which will be 
developed during FY82 and FY83. An investigation will be started 
in FY83 to determine if a computer-aided instruction (CAI) system 


would be a useful, cost-effective adjunct to USIS. If it is 
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determined that. a CAI system should support USIS, a. development: 


ree 


effort to. incorporate. USIS in‘a CAI system will be undertaken ~ 9° 


- 


in Fy84, 
E. Network Service Host (NSH) 


The PDP 11/70 currently designated as a network service 


host has been used to develop software and to support the COINS 


Network Management System (Annex A), and it will continue in 


these roles through FY82. Beginning in FY83, the PDP 11/70 will 


be available to support users with an editing capability and 


- provide for the storage of user files. These services can be 


supported by software currently available on the PDP 11/70. 


In FY83 a Data Base Management System (DBMS) will be selected 


and installed on the network service host. The selection will 


be based on an evaluation of how well the DBMS that are available 


for PDP 1l systems satisfy the perceived needs of the users to 
be supported and the cost of acquisition and maintenance. 
F. New Protocols 


1. Transmission Control Protocol and Internet Control 
Protocol (TCP/IP) 


The study to determine any detrimental effects of imple- 


menting the DoD standard TCP/IP in the UNIX based COINS Access 


System will be undertaken in FY81. The effort will start 
FY80 with the preparation of a test bed design and a plan 


for accomplishing the study. 
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ademise _ major cecbia ee encountered during fie 7 i 
study, TCP will be idstenatbed in the UNIX based Access : 
System in FY82. | | 

Tf. major problems ae discovered, implementation will. 
ba: delayed until the problems are solved, The delay will 
be determined by the nature of the problems and availability 
of resources to address them. 

2. File Transfer Protocol (FTP) 

A file transfer protocol, furnished by DEC for PDP 11 
computers, is being used by COINS to transfer system logs 
from the COINS Access Systems to the NSH computer. This 
FTP is only usable between two PDP 11 systems, 
€ _-—s« The study to determine the need for a general FIP will 
, be undertaken in FY83. If the study shows a generalized 
FIP is needed, a survey of available FTPs will be made to. 
determine if ids existing FIP can be used by COINS or adapted 
for COINS. If an FIP mst be developed for COINS, it will 
take place in Fy84, 


G, Network Virtual Terminal (NVT) 


An interim report on an NVT study was completed tn November 
1979, This study estimated the cost for developing a highly 
flexible NYT would range from $1,8 mtllion to $2,7 million, 
Because an NVT would not be of significant. value to COINS users 


until all resources were accessible using an NVT, the start of 
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and NVI program will be. delayed until FY83. It is expected that a8 


_ other NVT developments now planned or in progress will be usable, 


at least in part, and will reduce the cost of a COINS NVT signifi- 
cantly. Also, the NVTs now. being considered for IDHSC, AUTODIN II, 
and PLATFORM, will be firm enough to provide a firm specification 
for translating pecieen the COINS NVT and other network NVTs. 
‘Im FY83 the NVT for COINS TASs and HASs will be specified. 
The development effort will take place in FY83 and FY84. Imple- 
mentation will be accomplished by the end of FY85. 
“The NVT for COINS Network Access Systems (NASs) will be 
included in the designs for pioae gateways. The design for the 
IDHSC and PLATFORM NASs will start in FY83 and be implemented te _ 
in FYB4. The AUTODIN II NAS design is not scheduled, are 
| Presently, the TTY Model 40 teletype is a de facto NVT in. 


the COINS Network. The Delta Data terminals on NDS and other 


' types of terminals on the NSH are made to appear as TIY Model 40. 


when they enter the COINS Network. The same approach is being 
taken for the HP 2645 terminals at NAVINTCOM. 
H. Priority/Precedence 

The study of the priority/precedence systems used in the 
network that will interface COINS (AUTODIN II, IDHSC, and IAIPS) 
will take place in FY83. The functional description of the COINS 
priority/precedence spots and the procedures for when the system 
will be envoked, treating traffic reaching COINS or in COINS, 
and treating the priorities/precedences of the interfacing net- 


works will be prepared in FY83. 
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"pation of skis minor ciiaeea dictae coordination, a dasten ; 
specification for the satin will be developed concurrently with 
the. coordination, Development of the system will be completed 
and implemented early in FY85. 
VII. RESOURCES AND SCHEDULE 
The. following tables show the funds that have been budgeted, pro~- 
estes or planned to procure, develop, implement, and maintain the 
“hardware and software associated with the COINS Network Resources. 
The funds shown are those oer for procurement and for contractor? 
support. In-house. resources | are shown aa Annex A, COINS Network. 


re Interface Message Processor (IMP) 


< = Mapeeemene System. ee 


1000 of Dollars 


The O&M funds are for the hardware and software maintenance of 
the present H316 IMPs in FY80, FY81 and FY82 and to maintain the BBN C/30 


IMPs starting in FY81 and continuing through FY86. 
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The procurement funds, FY81-FY83, are for the purchase of five 
BBN C/30 processors and their resident software. Not shown is the =. 
acquisition of two or three BBN C/30 IMPs to be provided by the 


PLATFORM project in exchange for a COINS PMO owned BBN PLURIBUS IMP. 


B.. COINS Access Systems (CASs) 


FY82 


te — ff 
Tow [ae [ae [= | 


1000 of Dollars 


€ _ Except for $28,000 in FY80 to upgrade the existing COINS PMO 
TAS, the O&M funds are for hardware and software maintenance for 

Terminal Access Systems (TASs), Host Access Systems (HASS) , and Net- 
work Access Systems (NASs). In FY80 three TASs, and one HAS are 
covered. Three additional TASs will be purchased in FY80 and main- 
tained starting in FY81. The TAS at LLL will be maintained under a 
separate LLL contract. Tne funds for maintaining the NAVINICOM TAS 
will be transferred to COINS PMO via MIPR. Increases in FY82 and 
FY83 are for two NASs and two HASs that will be added to the mainte- 


nance requirements through FY86. 


an. aon ene meee ST 


15996 provided by COINS EMO; $225 provided by NAVINTCOM for one TAS; 
~ $225 provided by LLL for one TAS. 


2tacludes funding for the purchase of: HAS for WINDMILL, NAS for:: 
< PLATFORM, and a NAS for IDHSC. 
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ore: 


‘The procurement funds in FY80 are for existing COINS PMO TAS 


upgrade ($71,000), for purchasing three TASs ($675,000) in FY80, and 


for purchasing two NASs amd two HASs in FY82. The funds for the pur- 


_ chase of the LLL TAS and NAVINTCOM TAS will be transferred to the 


COINS PMO via MIPRs by the respective organizations. 
The RDT&E funds for ¥FY80 and FY81 are for software enhancements 
to TAS and HAS software. The FY82 funds are for development of NAS 
software for the PLATFORM and IDHSC NASs and HAS software for the 
WINDMILL and CIA Host HASs. The NAS and HAS software development 
will continue into FY83. Also included in FY82 and FY83 are funds 
for expected CAS software enhancements. All FY84 funds are to de- 
velop expected CAS software enhancements. ee a 


C. ADAPT 


FY80 FY86 


1000 of Dollars 


The RDT&E funds in FY80 are for the development and implementa- 
tion of ADAPT II. FY81 RDT&E funds will provide for the evaluation 
of ADAPT II, minor enhancements to ADAPT II and preparation of the 
ADAPT II specification. FY82 funds are to be used for developing 


ADAPT IIL which will be evaluated using FY83 funds. 
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. . Maintenance of ADAPT is planned to commence in FY83. 


yp. User Support Information System (USIS) 


50 


| 

| 

eee 1000 of Dollars | 
. I 

| 


The RDT&E funds pudgeted in FY80 will provide a USIS Pilot system 
( thet will be evaluated in FY80. F¥82 and FY83 RDT6E funds will be 
e used to develop USIS I. Also in FY83, the feasibility of ds seneneiae: 
USIS with a Computer Aided Instruction (CAI) system will be determined. = 
Assuming a USIS/CAI system is desirable, it will be developed in FY84 ms 
and FY85. Funds for USIS enhancements are planned in FY85 and FY86. : 
Contractor maintenance for USIS will start in FY84. Purchase of 


the USIS Host Computer System will take place in FY82. 


E. Network Service Host (NSH) 


I 


1000 of Dollars 
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. | The O&M procurement and RDT&E funds are for the selection acqui- 
sition and implementation and maintenance of a data base management 


system for the COINS PMO network service host, 


F. New Protocols 


1000 of Dollars 
nds provided by ASDC3(T) 
¢ * The study to-determine: any detrimental” 


impact of replacing the 
tisework Conttol Protocol (NCP) with TCP in the COINS Access Systems 
will gare in FY80 and be completed in FY81. Assuming the replacement 
of NCP with TCP is desirable, it will be iigstemeneed in extant COINS 
Access Systems in FY81 and FY82. COINS Access Systems acquired after 


FY81 will have TCP. 


The RDT&E funds in FY83 are to determine the requirement for a 
FTP to survey existing protocols and to select and adapt an existing 


FTP for COINS. In the event a new FTP mst be developed, the FY84 


funds will be required. 
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1000 of Dollars 


Development on NVI for COINS is planned to start in FY83 with a 
Phase 1 soevactousl capability to be implemented by the end of FY84. 
A second version of NVI will be undertaken in FY85 and implemented in 
FY86. Oe 3 3 — | . i - z 
"Installation of NVT will be limited to COINS Access Systems, = 
and,. the maintenance of NVT is included in the O&M funding plan for 


the COINS Access Systems. 


H. Priority/Precedence 


FY80 


P] [ae | a | 2 | 
P| fe] oof 


1000 of Dollars : 
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The RDT&E funds cover the study: of the other network systems, 


developing procedures, and the design and implementation of the COINS 


pri rf /precedence system. Since the system will be installed in 


meee 


"yee 


the CASS, O&M funds for maintenance are included in the CAS funding. 


I. Total COINS Network Resources 


1268 


1299 | 1405 | 1100 aso | 
3457 | 2748 | 2423 | 1773 


1000 of Dollars 
1 6096:.provided by COINS PMO for one TAS; $225 provided by NAVINTCOM 
for one TAS; $225 provided by LLL for one TAS. 


1323 | 1323 
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e Purchase BBN C/30 zz - 
e Install BBN C/30 a 
- NAVINTCOM onl 
State Dept. bes eyes’ © 
@ Replace H316 with ae 
c/30 5 


e Purchase 3 TASs 
e Install TASs 
NAVINTCOM 


| ¢ DIA 
— LLL © 


& 

mabe 

os | 
State Dept. . aa \ 
e Install TAS Enhance- | 

ments ae 

.@ Purchase “1 HAS- | 
e@ Develop HAS and NAS 


Software 


e Implement Software 
for: 


PLATFORM NAS P 
IDHSC NAS ee 
‘WINDMILL HAS a cal 
e Install CAS Enhance- 
ments 


@ Select DBMS 
e Implement DBMS 
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USsIS 


Develop & Implement - 
ADAPT IT | 
Evaluate ADAPT II | | mc 
e Prepare Specifi- po . 
cations for ADAPT Il 
Develop & Implement po : 
ADAPT III 
Evaluate ADAPT IIL | | = 
Develop & Implement aay ; 
Pilot USIS 
Evaluate Pilot USIS 2 
Develop USIS _ Q 
Implement USIS | : : 
Evaluate CAI : 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8: 


SCHEDULE. (Continued) 


a 


Develop USIS/CAI 


Implement USIS/CAI a —+— 


NEW. PROTOCOLS ; | 
Define TCP Test Bed | , . 
. @ Evaluate TCP | | 
Implement TCP | . 
Determine FIP F | ; 
’- Requirements | 
© Adapt FIP for COINS [x | oe fg 
- Develop NYT , . : . 
Implement NVT | a a 
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ic _ ' - §CHEDULE (Concluded) 


NVT (Cont'd) 
e Enhance NVI 


@ Implement Enhanced 
NVT 


PRIORITY / PRECEDENCE 
® Study Other Systems 
e Develop Procedures 


e Coordinate 
Procedures 


e Prepare 
Specification 


e Develop System 
Implement System 


“aye "Approved For Releasé 2003/08/18 : CIA-RDP83T00573R000100140001-8 


| 

| 

CC 1 Community On-Line Intelligence System — 
ae Project Management Office 


National Security Agency 
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I. DESCRIPTION 

This annex provides the long-range plans for new development, 
evaluation, and testing of hardware and software necessary to provide 
and eincntd high quality COINS services so that users will be encour- 
aged to exploit the COINS accessible resources. | 

The COINS PMO is not responsible for building better mouse traps, 
but for providing accessible easy-to-use paths to the door, In this 
regard the COINS PMO will continue to remove or reduce the bareiate 
that exist between the information stores and the users’ capability to 
make full use of the information. Many of these barriers have been. 
described in Section I, COINS. Concept of Operations, and Section II, 
COINS Architecture. Notable are the need to use Ganeceeee tava lan- . : & 
guages and the shortage of automated user tools to store, manipulate 
and otherwise process information from many sources after retrieval, 
Ways to remove or reduce these batviccs is the object o£ COINS network 
development activities. | | | 

The main thrust of COINS network development is technology trans- 
fer. The COINS PMO looks to existing capabilities or capabilities 
being developed (and funded) by other organizations and evaluate them 
to determine if they can be adopted or adapted for use in COINS, Para- 
mount of the technology transfer approach was the adaptation of ARPANET . 
packet switching technology to COINS in order to improve the poor net- 
work performance and to decrease the vulnerability associated with the 
central store and ecewaed switch that preceded packet switching in 


COINS. Technology transfer continues in many other areas. 
c-1 
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(- | The development (COINS funding) route is chosen only when no 
| ' other acquisition of the capability is satisfactory and the need for 
Ste cecal tae eapabiticy justifies the higher acquisition cost, Major 
among the developments are the COINS Access Systems—TAS, HAS, and 
NAS. 


In addition to the development and the evaluations associated 


with technology transfer, network development includes the testing of 

developed or modified capabilities prior to their achieving operational 

status in COINS. 

To support the COINS Network Development, test beds are needed 

for new development, evaluation, and testing. These test beds consist 

of general and special purpose hardware and software, and must be 

tailored to support the capability involved in the activity. The # 
€ : ' amalgam of these test beds is called the Technology Transfer and 

Research Facility (TTRF). The TTRF will be a dynamic facility—changing, 

growing, and shrinking depending on the activities being supported. It 

may contain many test beds at one time, and a test bed may be geographi- 


cally distributed; i.e., the TTRF is not constrained to a single location. 
Although TTRF is primarily a research, test and evaluation 


facility, the technology transfer functions require extensive train- 


ing of users who will participate in the testing and evaluation of 


the new capabilities. To provide for realistic test and to accon- 
plish the necessary; training, the TTRF must provide terminal access 


to the COINS network and associated host computers. For this reason, 
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little, if any, different from the short term. The continuous assess- 
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it lends itself well for use as. the main training facility to access 


the User Support Information System (USIS) to indoctrinate potential 


users of COINS and to train them in how to use the operational capa- 
bilities and. data available via the COINS network. The use of the 
TIRF to support operational training will require only a small part 

of the computer and terminal time, and in many instances both research 
and training support can take place simultaneously. Using the TTRF 

to support operational training, therefore, will not adversely affect 
its primary function. 

II. LONG-RANGE OBJECTIVES 


The long-range objectives of the COINS Network Development are 


ment of the quality and quantity of COINS-provided services as des- 
cribed in Annex A, COINS Network Management System, will identify 
iveks where more efficient or more effective support should be pro- 
vided to COINS users. Resource constraints oust as pehecareenial 
influences will dictate a priority for undertaking network improve- 
ments. The long-range objectives then are to provide as many needed 
improved or additional services as are possible within the constraints. 
The ITRF long-range objective is to locate at a TIRF computer 2 
at one (or more) of the intelligence schools (DIS, ISC or NCS) and 
provide terminal access to it from the other schools. In this way 
the schools can participate extensively (if desired) in the evalua- 
tion of new tools and techniques, and also have access to USIS and 


all other COINS accessible resources for operational training. 
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The network develogment activities are required to smpZONe and 
maintain the effectiveness of COINS in supporting the users of its 
accessible resources. These activities include the adoption, adaption } 
or development of needed hardware and software capabilities, the test 


and evaluation of new or new -releases of software and user training. 


The ASD(C°I) has directed all DoD packet switched networks to 
adopt the DoD standard Transmission Control Protocol and the Internet 
Control Protocl (TCP/IP). It is necessary to identify any adverse 
affects TCP/IP may have on the performance of the COINS Access Systems. 
The performance meagusesdenee will be made in the COINS Technology 


Transfer ‘Research Facility. 


i 


‘The justification for technology transfer stems from the belief 
that it is more cost-effective to adapt hardware and software for the 
COINS commmity of users than it is to expend resources on development 


of capabilities to satisfy perceived needs. 


Some capabilities are, and will be, the result of research projects 
funded by the DoD. The technology transfer research setivities provide 
vehicles not only to determine if operational capabilities are useful 
in the COINS community, but provide vehicles to influence development 
to improve the probability that a final piece of hardware or software 
package will be a cost-effective addition to the COINS-provided services. 
The ADAPT system, which provides a uniform data language interface to 


multiple query languages, and the Man-Machine Relationship Program 
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QORP) are two examples of projects initiated by the DoD Advanced. 


‘Projects Research Agency cDanPa) ‘that are, or will be, using the- 


COINS community via the TTRF to evaluate the prototype editions of 
the capabilities. 


This synergistic relationship provides DARPA with evaluations 


of the fruits of their efforts in an operational or operational~like 


environment and provides the COINS PMO with the opportunity to in- 
fluence further developments. . 

The funding for the development of the Kernelized Secure Operating 
System (KSOS) was arranged by asD(C°z). RSOS was developed to rum on 
the DEC PDP-1l computer and emulates the UNIX operating system, The 
PDP-1l with the UNIX operating system is the base for the COINS Access 
System. Because of this and the potential of KSOS to improve COINS 
security, ASD(C°I) and COINS PMO have agreed to use the COINS Technology 
Transfer Research Facility to construct a test bed to evaluate the 
security features of KSOS and to do performance measurements on KSOS 
based COINS Access “Systems. 

Within the TIRF is a COINS-II Terminal Access System (TAS) that 
will be complemented from time to time with the hardware and software 
capabilities to be evaluated. It is expected that the TTRF will not 
be always fully loaded in performing technology transfer research 
activities. For this reason, it will be used as a test bed to check 
out new software or new software releases for the TAS. These final 
tests will be accomplished in the TTRF without adversely effecting 


the operational use of the COINS-II network, 


C-5 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


-- eee er 


eee ee enteenn cent © 


eer fr na te meer tenn me ete ne inane teu ney seni tb 


a On 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 . 


(~ _ 7 The: TAS in the TIRF will also function as the system to support. 
the training of new COINS users ‘in how to access the COINS network 
and the rich assortment of “cegources provided by the COINS host computers. 
Iv. FACTORS BEARING ON THE PLAN | 
A. Facts 
1. The COINS PMO has agreed to use the TIRE to construct 
a test bed to evaluate capabilities being developed under 
the DARPA Man-Machine Relationship Program. 
This is a long-term program that will provide new 


hardware and software and iterative evaluation-improvement 
cycles. The first version of the electronic desk was de- 
livered to the COINS PMO for evaluation in June 1980, 

c 2. The second version of ADAPT (ADAPT II) was funded by | 

€ | . the COINS PMO, ADAPT II must be evaluated in a realistic 
environment before making it available for operational use. 
ADAPT II will be delivered in October of 1980, | 
B. Assumptions , 

1. COINS will be required to provide information handling 
services other than query-response. 

If this assumption is false, the network development 
activities will be much diminished, and the TIRF will be 
difficult to justify. 

2. Remote access to the TTRF will be available using 


standard COINS terminals and other nonstandard equipment for 
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< the purpose of engaging in technology transfer research parE eS 
activities from remote sites; e.g., the intelligence schools _ 
and Washington, D.C. area subscriber agencies. 

If remote access is not available, then training activi- 
ties must be treated differently than planned. Also, the 
approach to capability evaluation of involving users at their 

| 
home stations will not be possible nor will contractor and 
COINS PMO personnel have the option of developing or presenting 
realistic demonstrations of capabilities at the intelligence | 
schools or other sites, 
C. Issues 


1. Access to computers other than the TTRF DEC PDP-11/70 


€ has not been provided nor are there plans to do so, If 


arrangements can be made to access computers on the COINS | 
network and other networks (e.g,., ARPANET) to evaluate capa- : 
bilities available on those computers, the technology trans- | 
fer research activities would be much enhanced, The use of 
these computers in the entire capability evaluation process | 
would be ideal. However, many technical and organizational 

problems inhibit or preclude this ideal solution. On the | 7 
other end of the spectrum, a minimal use of these other com- | 
puters is to do the preliminary evaluation to determine if 

additional resources should be expended to do further evalua- 


tions. A resolution of the issue that goes as far beyond 


the minimal use as practical is preferred, 
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If the status quo is maintained, the hands-on evaluation © 


work will be limited to capabilities. that can be made to 
function on the DEC PDP-11/70. ‘The cut-off saint for deter- 
mining if a capability has enough promise to warrant its 
implementation on the TTRF computer will be much higher 
because the cost of evaluation will be higher. The conse- 
quence is that fewer capabilities will be examined because 
the cost to instell them on the TTRF computer for further 
evaluation cannot be justified. we, a 2 
2. It is presently planned that the TIRF staff initially 
will be contractor personnel, Most of the technology trans-— 
fer research activities will require access to the substantive 
intelligence files. If, however, contractor personnel are 
restricted from accessing many of the substantive intelli- 
gence files as they now are, the staff will have to be drawn 
from in-house resources. - 
V. APPROACH 

The approach to satisfying the long-term objectives of the COINS 
Network Development is to find cost-effective ways to meet the quanti~ 
tative and qualitative needs of the COINS user and server communities. 

The first step in satisfying a requirement is for the COINS PMO 
to decide if it can be satisfied by using or modifying a resource 


available within COINS. Only those requirements that require the 


c~8 
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introduction of a resource. new to COINS, or that require an existing 


resource to be significantly changed will be considered Network 


Developments. 


Tf a resource new to COINS is required, existing or developing 
resources external to COINS will be evaluated to determine if they 
can be adopted or idavted to satisfy the requirement. New develop- 
ment will be considered only when it is the most cost-effective way 
to satisfy the requirements. New developments, once they are tested 
and ready for evaluation, will be treated in-a fashion similar to 
existing resources that are being considered for transfer to COINS. 
Step a., in the following general procedure does not apply to new 
developments. 

A. General Procedure 

Evaluation oF Haw eaaoubeee will be conducted by a "tech- 
nology transfer manager" and his staff within the COINS PMO 
with assistance from the COINS user community. Once a resource 
has been designated for evaluation, the following general steps 
will be taken: 

a. The resource will. be installed for preliminary 

evaluation. 

b. For promising resources, demonstrations to show 

how the capability may be used in an operational 
environment will be developed. The demonstrations 
will use as realistic applications as are practical 


for a training environment. 
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ec. . Potential spavence the Sebdicrce uid Beats participate 
in the evaluations will be shown demonstrations 
and trained in using the new resource. 

d. A period of supervised use will be provided for 
the participants. 

e. Access to the capability will be provided to selected 
users at their home stations, when this is practical, 
for their use and further evaluation in an operational 
environment, 

f. The evaluation will be concluded with a report prepared 
for the COINS PMO by the technology transfer manager 
with major contributions from the users. The report 
will include a recommendation: to implement, to modify 2 
and implement, to select an alternative capability, 
to continue in an experimental mode, to do some com- 
bination of the preceding, or to discard the resource. 

B.. Network Development 

Management of the net development activities will be the 

responsibility of the COINS PMO with assistance from a coordina- 
tion group composed or representatives from the intelligence 
agencies--CIA, DIA, NPIC, and NSA--and from the State Department 
and Department of Energy. | 

The COINS PMO will identify resources for evaluation, To 


support the evaluation of resources, the COINS PMO will be re- 


sponsible for: 
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a. 


Be- 


“Developing evaluation plans. 


Identifying any additional hardware and software 
needed for the sraiiaeian: a a 
Acquiring any additional hardware and software, 
Coordinating the installation of any additional 
hardware and software with participating organizations 
when required. 

Developing needed software when devaloiment is the 
most. reasonable way to acquire the resource. 
Coordinating the evaluation plans with the coordi- 
nation group. 

Developing realistic demonstrations of the capa- 
bilities to be evaluated. 

Training, the resource user who are to participate 
in the evaluation. sae 
Conducting the evaluations. 

Preparing the evaluation reports. 

Coordinating the evaluation reports with the 
coordination group. | 

Allocating capacity for use by individual users 

to develop, test and evaluate resources to address 


their substantive problems. 
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The coordination group will be responsible for; | ov: 


ae. 


g- 


Reviewing the resources identified by the COINS PMO 


; for evaluation, identifying additional resources 


to- be evaluated, and prioritizing the resources 

to be evaluated. 

Identifying the substantive intelligence problems 
that can use the resources to be evaluated and 
selecting one or more problems for use in the 
evaluation. 

Identifying personnel within each agency who will 
participate in the evaluations. 


Reviewing the evaluation plans and schedules 


prepared by the COINS PMO. 4% mee 


Reviewing the progress.of the evaluations. 


Coordinating with the COINS PMO to address any 


‘interagency problems that may hamper the eyaluations, 


Reviewing the evaluation reports prepared for the 
COINS PMO. 
Coordinating implementation actions when it is 


decided that a capability should be implemented. 


VI. STATUS AND PLANS 


The near-term plans call for the evaluation of ADAPT-II from 


October 1980 through June of 1981. The USIS evaluation will start 


in October of 1980 and run through September of 1981, The first phase 
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of the Man-Machine Relationship Program (MMRP) will start in Fy8l. 

The MMRP evaluation will continue on an as-required basis for deebat 
jaaca as sddic ional Gapavilaedee are developed. Also the TTRF will 

be used as the test bed to test and evaluate TCP4/IP and the Kernelized 


Secure Operating System (KSOS) in conjunction with COINS Access Sys- 


FY82. The initial phase of the prototype BLACKER system test and 
evaluation will start in early FY81l. 

During the mid-term (FY83 - FY84) application of computer-aided 
instruction (CAI) techniques to COINS training will be evaluated in 
the TTRF. This evaluation will be part of the istereaiee Informa-— 
tion System (USIS). The evaluation of the standard secure network 
front-end (SNFE) will also involve the TTRF during the mid-tern. 

mn etaeaetens of RITA, NED, and the graphics package applica- 
tions to intelligence problems will start in FY83. It is scaciie: 
however, that other COINS-PMO development efforts may find use for 
one or more of these resources prior to FY 83. The Network Usage 
Information System is a strong possibility for the graphics package 
and NED provides an easy-to-learn and easy-to-use editor for 
capturing and maintaining on-line user guides in support of the - 
User Support Information System. 

A DEC PDP-11/70 will be delivered in December 1980 for the 
Technology Transfer Research Facility. The TIRF PDP-11/70 will 
house the prototype USIS and may be used for the KSOS and TCP4/IP 


evaluations, although the KSOS and TCP4/IP evaluation will initially 
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use the Network Service. Host in the test bed. In FIGS aSis will be 
placed on a dedicated computer; freeing the TTRF POP-11/70 of that 
work load. At that time the TTRF PDP~11/ 70 will be installed at one 
of the intelligence schools with a complement of terminals to support 
development and training and srdiwarion: Remote terminals will be 
installed at the other schools to support training and for evaluating 
new tools and techniques in a psuedo-operational environment. 

The BLACKER hardware and software was delivered in April 1980 
and evaluations with NPIC/NDS should start by the end of FY80 and 


with NSA/SOLIS in FY81. BLACKER will go through a multiphase test 


and evaluation program through FY84. See Annex D, COINS Network 


Security: for more detail. 
vir. RESOURCES AND SCHEDULES 

The following tables show the funds budgeted, peoetanied: and 
planned to perform the network development activities that are not’ 
included in the other annexes to the long range plan. - Annex B, 
COINS Network Resources presents the resources and schedules for 
ADAPT, USIS and the TCP4/IP evaluations. Annex D, COINS Network 
Security, presents the resources and schedules for the BLACKER, 
Kernalized Secure Operating System (KSOS) and the Secure Network 
Front End (SNFE) evaluation. 

FY 79 funds were used to procure the DEC PDP~11/70 TTRF 


computer, and therefore are not reflected on the following table. 
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¢ - The funds shown on the following tables are for eyerusrane ; ae 
| existing capabilities or capabilities being developed with prosecs 
funds external to COINS. 


A. Man-Machine Relationship Program (MMRP) 


aes fez | 0s | sa| os | oo 


PROCUREINT 
100 {100 | 100 | 100 


potas [_[oo_[50 co [200 [20 fa 
ed 


1000 of Dollars 


4 C-15 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


D. GRAPHICS 


1000 ef Dollars 


E. ADAPT, MMRP AND RITA INTEGRATION 


FF 8] 86 


O&M 
eo a 
175 | 175 |175 


TOTAL aes a ey 
ee cal 


81 


1000 of Dollars 


€ ‘The RDT&E funds in FY84 are to evaluate the integration 
RITA, ADAPT and the extant MMRP capabilities into an analyst 
work station. The FY85 funds are. to develop a demonstration 
of how the integrated capabilities can be used on a realistic 
_analyst problem. 


F. TOTAL NETWORK DEVELOPMENT 
(282. |. 583.) 84 1-85. | 86 _ | 


50 alalals 


aS of ae 


< C-16 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


Seipmeenneceaenenetat + — ee ne ee 


SCHEDULE _ 


TIRE 


e Install PDP 11/70 - 
COINS PMO 

e Install PDP 11/70 - 

School 


MMRP-1 
e Evaluate MMRP (ED 1) 


e Prepare Evaluation 
Report 


MMRP-II, III, etc. . 
e Iterate MMRP-I Schedule 


RITA 


e Evaluate RITA 
e Prepare Evaluation. 
Report 


TEXT EDITING/WORD 
“PROCESSING (NED) 


e Develop Pilot 

Applications 
e Evalute Pilots 
e Prepare Report 


GRAPHICS PACKAGE 


e Evalute Graphics 

e Prepare Evaluation 
Reports 

e Evaluate Integration of 
ADAPT/MMRP/RITA 

e Prepare Report 

.@ Prepare Pilot . 

Demonstration 

Evaluate Pilot 

Prepare Report 
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The capabilities to be considered for evaluation in the 
network development activities are MMRP, RITA, the Text Editor (NED), 
and a Graphics Package. A separate plan will be developed to cover 
the evaluation of each capability. 

The following paragraphs present brief duceeeiois of these 
capabilities, and some general applications for RITA, NED and the 
Graphics Package. These kinds of general applications will be used 
in addressing realistic problems in the evaluations. 

Man Machine Relationship Program (MMRP) 
Description: 
The MMRP is a research and development project being funded by 
_ DARPA. It includes hardware and software development. The 
‘< main thrust of the project is to determine the characteristics 
of a Soy station at various levels of endeavor; i.e., from 
analyst level through the policy making levels of government. 
The hardware and software are presently in their embryonic 
state. It is expected that many incremental improvements will 
be made over the next several years. 
RITA 
Description: 
Rule-directed Interactive Transaction Agent - is a system 


designed for use by persons who are not computer sophisticates 


to develop agents (computer programs) to perform tasks in an 


automated fashion. It is under development by Rand and is 


C experimentally operational. 
c-19 
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Applications:: . 
e Preparing and maintaining human-machine interfaces tailored 
to individual analysts. 
e Preparing and maintaining programs to perform simple 
repetitive analyst's tasks, 
e.g-, monitoring data for abnormal or out~-of-bounds 
activities. 
e Updating stored queries to reflect changes in such things as 
date of coverage, area of coverage and VIPs of interest. 
e Invoking queries based on the determination that an event 
occurred. 
Status: | = HO - _ 
| € . RITA is experimentally operational on the Network Service Host 7 


and will be operational on the TTRF in September 1980. 


Description: 


A CRT text editor developed by Bolt Beranek and Newman, Incorporated 
under contract to the Rand Corporation. It is used with a CRT 


terminal to prepare and modify documents, letters, messages, and 


computer programs. . 


Applications: 
e Preparing periodic and ad hoc reports. 
e Editing personal files, e.g., query responses. 


e. Incorporating query responses into reports. 
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C _  @ Preparing queries for submission. 


i 
) | 
-@ Combining query responses from different files into a uniform -. 7 
format. : 
e Introducing or suggesting changes on collaborative reports. 

e@ Preparing messages for electronic or hard copy delivery. 

@ Preparing and maintaining briefings in a current fashion. | 


@ Preparing and maintaining computer programs including RITA 


Status: 


i 
programs. : 
NED is currently operating on the NSH with both Ann Arbor 4080D 

CRI terminal and the Teletype Model 40 CRT terminal. : 
NED will be made operational on the TIRF after it is installed. 


GRAPHICS PACKAGE 


‘ Description: 
. The set of PLOT 10 programs and a Hewlett Packard HP 2648 graphics 


terminal to provide a geteral purpose graphics capability for | | 
evaluation. | | - | 
Applications: 
e Plotting aircraft and aiip hocenenes on ‘map backgrounds. _ 
e Providing graphical representations of tabular data such as 
flight activity, . J 
- Ships operation out of area, 
- Long term trends in force changes. 


e Preparing graphics for briefings. 


Status: 


PLOT 10 is operational on the Network Service Host. It will be 


< made operational on the TTRF after it is installed. _ 
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This paper provides the Technical Support Plan for the COINS 
Network Security. Readers who desire or need more information about. 
the COINS PMO plans for network security are referred to the COINS 


Network Security Development. Plan. 
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I. DESCRIPTION 
- The COINS security plan is an integration of a number of projects 
designed to provide maximum protection to Sensitive Compartmented 
Information (SCI) and other classified material handled in the network. 
The present state of COINS security is summarized below: 
a. The COINS network operates in a System High mode of 
TOP SECRET SI/TK. All COINS users are cleared TOP SECRET 
SI/TK. 
b.. All COINS users are transaction system users, There is 
no.user programming accessible through COINS. on any seryvere 


host in the network.* . tic: 


. Ce Batch operations follow ma-3 ‘2? security rules. 


d. All COINS computer and terminal sites are cleared for 


TOP SECRET SI/TK operations. 

e. COINS security issues are handled by the COINS Network 7 = 
Security Officer (NSO) who is the chairman of an inter- 
agency committee known as the COINS Security Panel. 

£. Formal security procedures for the COINS Terminal Access 
System (TAS) are being developed. thdee pracudisas will 
delineate the security duties and responsibilities of the 
TASMASTER, administrative users, and individual end-users. 

*Since COINS exercises NO control over server-hosts, it is possible 
that a participaring agency will provide programming access for its 
own users on the server-host upon which a COINS data base is homed. 


However, such programming access IS NOT available from the COINS 
network. 
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g- The original COINS Security Panel (CSP) charter is 


being wiaaved and reissued. The new charter will 

; identify CSP members as the ISSOs for the vatious 
participating agencies. The chairman of the panel 
will be the COINS Network Security Officer. The CSP 
will continue to advise the COINS Project Manager 
regarding security policy, des tansneatise 68 geese 
measures, and security research needs of the network. 

h. COINS has no inte contant security authority. It has 

no authority to impose security vadutrencate of or 
police the enforcement of existing security policy by 
either user or contributing agencies. As a designated 
community-wide service, COINS derives its security 
requirements from DCID's 1/16, 1/7, and 1/14; (> 3, 4) 
Executive Order 12036 (for: Privacy) ©); and USCSB 4-11 


(6) COINS does 


for policy on compromising emanations. 
have both the authority and independent jurisdiction 
over the security of the COINS Network (i.e., the 
secure subnet and the interface layer of TASs and NAS). 

i. Each participating agency is responsible for insuring 
the safety of its segment of the system, including pro- 
cedures to protect access to files by authorized terminals 
or personnel and providing for proper security labels 


on system outputs. Each agency has also appointed a 


representative to the COINS Security Panel. 
De2 
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j. Although extensive security controls have. been designed 
into the COINS Access Systems (CAS) (see below), only 
about 10% of the COINS user population is currently 


homed on a CAS. 


k. Just as the CAS was seen to provide a standard and 


coherent interface to users, it also provides substan- 
tial security functionality as well. 
A substantial part of the technical COINS security development 
to date has been focused in the COINS Terminal Access System 
(ras) 7» 8, 2) | Since its development, the TAS has evolved into a 
generalized network interface and access system (CAS) which will per- 


form the functions of a network front-end and internet gateway as 
€ well. 


to providing COINS security, a review of the principal security fea- 


Because of the central role the CAS plays in the overall approach 


tures of the CAS is presented as a base from which additional devel- 
opments will be made. 
A. Overview of CAS Security Architecture 
The CAS architecture is responsive to the diverse and dynamic 
mature of the COINS network. It provides the user a coherent 
interface to server-host computers of different manufacturer and 
to data base applications of widely varying design. It was 
conceived as a means of insulating its users from much of the 
differences that exist in the different server-host machines 


and the data base query languages. 
C bs 
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"J mhe CAS security architecture has bese casstgnea es sedetde ci 
~ maximum protection to the. sensitive data in the network while 
keeping the end-user’s interface-as simple as possible, 
| In addition, the Cis eecastey architecture has addressed 
the problem of security adninistrabton, It. provides the user 
pevanisacious with considerable flexibility in how security is 
managed. ‘Ie also allows a single CAS to support more than one 
organization, each of which can exercise full control over its 
own security management yet be igcitea from. and non-interfering 
with other co-resident user organizations. at 
The principal features of the CAS security architecture 
are: | 
<< a Bs Structured Network Identifiers 
b. User Access Authorization | 
c. Server-Host Access Authorization 
d. Decentralized Security Management 
These topics are discussed itn more detail below: 
1. Structured Network Identifiers (SNT) 
ALL cas users are uniquely identified with an eight- 


character identifier of the form: 


TAAGGUUU 
where: 
T = is the user's home CAS 
AA = is a designator representing the user's agency 
GG’ = is a group within an agency 


C ; UUU = is the user within the grouping. (A number in 
the range 000-999) 
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. ‘The structured identifier uniquely identifies all network ~~ 

| users entering through CAS and permits both activity and . 

security logging of an. individual's network activity. <A 

user requires an SNI and a password to log on to CAS, 

2. Access Authorization 

Each user known to a CAS (i.e., who. has an SNI) has an 

access authorization record in the User-Host Access Authori- 

zation (AA) File (UH/AAF). 

In addition, the record contains a list of eis COINS 
application (e.g., RYETIP, SOLIS, DIAOLS, ADCOM, etc.) and, 
‘Bue Choke applications involving multiple files, a list of . 

_ files authorized to the user by the user's home organization. 

The user's access authorization record ales contains 
interactive systems log-on information (an identifier and 
password) in the form required by the particular interactive 
eyacan® This information is used.to perform a user-invisible 
log-on to the server-host supporting an interactive applica- 
tion, This. "surrogate. log-on" service of CAS insulates 
COINS end-users from the considerable variability in log-on 
protocols that exist among the computer systems of COINS. 
"Application and file access controls are applied to 
terminals as well. Each terminal connected to CAS is 
logically identified by CAS and is represented by an AA 
record defining which applications and files within the 


applications may be accessed by the terminal. 
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A "session security level" is logically established at 
- log-on based Gdcthe user's authorization and his terminal's 
‘authorizations. This (conceptual) level controls what data 
may be accessed in a. session. 

The user and terminal AA files are used by CAS to imple— 
ment the major functions of TMA-3: 

e Control of user access to a data base 


e Verification that a user/terminal is cleared to 
receive a particular batch response 


3. Server-Host Access Authorization 
When CAS was upgraded to include server-host functions 
in 1978, the access authorization function was expanded to 
include application access authorization data. ae = 


‘" -4, Decentralized Security Management 


The CAS security management design was influenced by the 


following major considerations: 


e Each using agency would be responsible for 
managing the security information and access 
authorizations of its own users and applications 
(where appropriate). 


e A large using agency may wish to delegate some 
of the security management to functional organi- 
zations within the agency. r 


e A single CAS may be shared by two or more inde- 
pendent agencies. 


To meet these somewhat diverse requirements, the CAS 


security architecture includes three kinds of users: 
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TASMASTER . a single user who "owns" the cas and who 
a Pa directly or indirectly (see Administrative 
a User) creates all other users. 
Administrative User - a user who has the delegated 
authority to create and administer a speci- 
fied set of ordinary users. 
Ordinary Users ~ users authorized to use CAS and the 
COINS network. | 
4n administrative user can add, modify, or delete users 
within the group that can be "named" with a single "SNI- 
prefix". That is, the up to 1,000 users who have the same 
TAAG (CAS, Agency, Group within the Agency) prefix in their 


SNI. 


° 
> 


Administrative users cannot affect any records other 
than those bearing the same SNI-prefix. . 

The TASMASTER establishes the basic access authoriza~ 
tions for administrative users. The administrative user 
can further subdivide his access authorizations among users 
within his domain. He cannot give any user moré privileges 
than he has himself. It is not necessary to give. an.sad-- 


ministrative user all CAS or network privileges. 
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i 
II. , LONG-RANGE OBJECTIVES Se | ae 
| ~ The objectives. Listed here are the security-related ebiescives | 
for COINS itself. The objectives provide the targets to shoot for 
and an independent basis of evaluating how well COINS meets the ob- 
jectives. Some objectives require management/organizational initia- | 
tives, while others are satisfied by technical research or development _ 
activities. . 
The following are the security objectives for COINS: ar = 
a. Insure compliance with DCID 1/16 and 1/7, 6223) Provide = | 


(3) within 


the standardized security markings of DCID 1/7 
the COINS network. _ 
b. To evolve Sith the use of the network, supporting the 
ce security interests pi uawes ana servers alike. : | | 
< | c. Demonstrate the capability to perform multi-level secure 
handling and processing of information in the network. 
d. To provide better access to COINS, imtoo WEE controls, i 
provide closed communities of interest (COIs), and misroute 
protection in COINS by continuing to develop and refine the 
ongoing BLACKER project. 
e. Improve the technical foundation for COINS security and 


provide support for some user programming in the network 


by applying KSOS to one or more network service hosts. 


f. To. support expanded usage of COINS for: 
e Data base applications 


e@ Development of special uses and other kinds of 
transaction systems 


C - 
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€ - Be To Sunes ehviletteeeiae asiatinas to security problems 
arising from internetworking. | & 
h. Provide the ability for fie network to handle multi- 
jurisdictional security protocols for NIK. 
. i. Integrate the capabilities of the UNIX-based CAS/NAS with 
| the BLACKER and KSOS to produce a secure NFE suitable for 
use in COINS and other integrated service networks. 
IIL. JUSTIFICATION | 
Aside from the obvious paawitiodeige for providing security of 
sensitive information, the underlying reason for the elements of the | | 
COINS Security program is to improve the usability of the network. 
The usability of the network is closely tied to the ability of the 
€ network to provide security and need-to-know protection for the in- 
| formation resources being handled on the network. Since the CASs 
have a role in providing local user services, they ought to be able 
to do so securely. 
At present, much of the CASs‘ security is derived from the 
limited user functionality they present. As we move through the 
1980's, limitations on user functionality will severely hurt the 
network's development. Thus, both the KSOS/TCP4 and BLACKER programs 
are meant to provide a better technological foundation for continued 
network growth. 
As more COINS Access Systems are installed as gateways, front-end 
and terminal access systems, server-hosts can be relieved of a sub- 


stantial administrative burden or keeping track of all of the users, 


C a 
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_ precluding some users from accessing proprietary information and the 
like. At this moment, the full burden of protecting -a seryer's 


assets falls on the server-host's agency. In the very near future, 


to the extent and scope desired by the server agency, that hurden can 
be shifted onto a CAS front-ending the server. The CAS will be able 
to enforce the security requirements and whatever need-to-know or 
proprietary access policy is desired by a server-host/application on 
users accessing the host from the network. 
Finally, a number of tasks described in this plan are included 
to improve the security management and security administration of i 
the network. | 
"sd TW..-s- FACTORS BEARING ON THE PLAN | seed 
C ; i Se A. Facts S : -. 
1. COINS is currently operating at the TOP SECRET SI/TK 
level, providing support to approximately 2,400 users in 
40 different organizations. The single security level 
(systems high) mode of operation restricts the use of the 
network to only those users with TS-SI/TK access authoriza- 
tions. 
2. The UNIX-based CAS has built-in access and distribution 


security and need~to-know controls, This capability provides 


an important foundation upon which additional COINS network 


security can be built. 
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34 ASD(C°Z) has tasked - COINS PMO. to srk with DCA to develop ae 
a standard secure. dacwork front-end. (SNFE). A standard SNFE 
will reduce the costs of providing secure Amewoyie not only 
in COINS, but in other user communities. 
B. Assumptions 
1. General Assumptions 
a. COINS will continue to operate an the Washington, DC, . 


area through FY 1986 and will be expanded to: 


e Provide service to intelligence analysts in all 
appropriate agencies 


e Provide different types of information handling 
services, other than query-response (e.g., tele- 
conferencing, text editing, specialized planning 
systems, and the like) to intelligence community 
end-users 


‘4 e@ Incorporate additional host processors and other 
applications 


Even if the assumption about COINS growth proves to be 
incorrect, most of the security elements outlined in 
this plan are still required, About the only part of 
the plan that. might not. be required under the assumption 
of no further growth is. the part containing the elements 
leading to multi-level secure operations. 

b. COINS will have gateways to other networks. If this 
does not come to pass, then the segments of the security 
plan designed to cope with supporting users on other 


networks will not be required. 
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e COINS will come ‘under increasing pressure to provide 
multi-level secure operation, not only to gain access 
at the appropriate level to data classified only SECRET 
or CONFIDENTIAL, but to support access to more and dif- 
ferent kinds of SCI. In addition, COINS will have to 
show that it can control access, NTK and delivery of 
data to individual users and or terminals by name in 
order to meet the security requirements of the APEX 
system. | 
d. There will be no relaxation of security constraints 
on COINS or other community systems in the next five 
years. Some additional Rite eo Saiad acnpeyaia or origi- 
nator-controlled data requirements may be added during 
this time period. | 

2. Technical Security Assumptions 
a. The BLACKER prototype system will be sufficiently 
successful that it will be possible to incorporate 

BLACKER concepts and equipment in network security plans 
not later than FY 1985. 

b. The UNIX KSOS will be certified in 1980, such that 
the proposed TCP4/KSOS test bed can be established no 
later than the end of FY 1981. This assumption affects 
not only the objective of developing a multi-level 
secure network of COINS, but its failure or delay will 


affect the extension of BLACKER to other network elements. 
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c. The design and inp lesentatdon of the cas -will 
continue £6: be improved to permit responsive simul- 
taneous connection of at least 64 subscribers, under 
KSOS implementation. This assumption is an implied 
performance objective for KSOS. While it is not antici- 
pated that the initial installation of KSOS will meet 
this objective, if it appears that the objective can 
‘never be met, the entire concept of a multi-level secure 
COINS network will require serious reexamination. 


d. The results of the DARPA BCR project will continue 


to be available to COINS, particularly the work regarding 
multi-jurisdictional security administration. Since 
< _ in some regards. the BCR project is a "shadow" BLACKER, 
. it is important to COINS as a. backup to the BLACKER 5. Lae 
project and as a possible means of providing the NTK. 
gaa é6r pretaceioa in the event of a. serious failure 
of BLACKER. 
C. issues 
Ll. There is a potential for conflict regarding how to apply 
particular techncological developments to achieve a desired 
capability for COINS. The potential arises from how one 
looks at the network--as a set of logical circuits Giaiseudus 
to wire) or as an integrated service to a community of users. 
These views lead to different interpretations of what is 


important. 
< | D-13 
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Failure to recognize this issue can lead to dilution 
of COINS to a mere wire-works. While it is technologically 
possible to effect such connection(s), the question is 


whether or not the purpose and function of COINS is served 


by doing so. 

If the issue is resolved in favor of the logical circuit 
view of the network, then much of the network ys plan, 
and other "user services” designed to be integrated in the 
access ring is umnmecessary. It will also result in a net- 
work where the burden of using the network will be gubataus 
tial, and on the shoulders of the user alone. 

If the issue is resolved in.favor of ‘the value-added 

<4 view of the network, then the BLACKER technology will have 
: to be adapted (in some ways, substantially) in order to 
serve COINS needs. To a much lesser extent, there are 
similar trade-offs applicable to the KSOS if it is applied 
throughout the network... 

hiecteane requires Gaserat understanding of the alter- 
natives, not only in the security sphere, but in the COINS 
PMO provided services as well. It does not appear that both 
views can coexist, therefore, a choice will have to be made 
as to which view will guide COINS development over the next 


decade. 
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2.. Server-hosts supporting applications. contributed to 
COINS. or. providing terminal support to users in their 
agencies may operate under different security regulations. 
than COINS (e.g., a DoD regulation implementing the 
Executive order ‘°)_-and the DCID 1/16?) and DCID 1/7, 
Regardless, COINS cannot enforce Department /Agency regula- 
tions beyond those specified in pcrD 1/167? ana ver 1/7%, 
3. Overall security in the current network will be con- 


siderably improved if: 


e No user programming is permitted on any COINS | 
server-host. : 


e@ All “local" users of any COINS server-host 
- were homed on a CAS. 


e All COINS eens were homed on a CAS, 

Even if everyone Derr ee the correctness of these 
points, there is ig mayeto eeecee Che Gheveas required 
since COINS does not ow or control the essential assets 
(server-hosts, applications, etc.). At present, all that 
can be done is to attempt to persuade the various entities 
to move to these positions. The development and integration 
of multi-level secure processors. will remove the need for 
such restrictive measures. 

4. The internetworking of COINS with other networks 
(PLATFORM, IDHSC, etc.) creates multi-level networks (net~- 


works of at least System High level in DCID 1/16) terms). 
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The. DCID 1/16 "Compartmented Mode” as defined provides 
less control than System High (as defined) unless the user's 
functionality is restricted in some way not specified in 


the. DCID. 
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Vv. APPROACH 

‘The security plan outlined here is directed to developing and 
applying various technical measures to COINS to achieve some or all 
of the objectives outlined in Section II. In addition, the plan 
provides for the administration of COINS security through the COINS 
Network Security Officer. A number of items are for support of his 
effort(s). 

The plan presents short-term (one to three years into the 


future) and longer-term (three of five years and beyond) elements, 


' To some extent, the plan is paced by the short-term objectives. 


Further, some of the longer-term objectives will be mediated by how 
the network evolves from its present form. The contribution of the 
various elements of the plan to the objectives outlined in Section I 
are tilasttated in Figure l. 

The principal approach to providing COINS security is to require 
that all users of COINS be registered (kmown) on some CAS (a TAS, 
HAS, or NAS) depending on where the end-user is located. With all 
network users registered and known on some asco asset, it is then 
possible to enforce access controls at the various: COINS Access 
Systems. This, coupled with anticipated developments in KSOS and 
BLACKER to protect the access control mechanisms themselves, will 


t 


provide flexible and efficient network security. 
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BLACKER Applications 


Software Encryption 


ID & Authentication 


Output Labeling 


NTK Controls 
NSO Support 


KSOS/TCP4 


Comply with DCID1/7,___ 
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‘Support network evolution — x 


"Demonstrate multi-level _ x 
capability 


_ Improve NIK, COI controls | x 


° 


< Bs “tapeoe technical Somes [x 
| tion of COINS security 


6. Expand usage of COINS = fs X 


7. . Provide internetworking 


C : FIGURE 1 


7 eres! _ 
Contribution of Plan Elements to COINS Network Objectives 
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A. KSOS/TCP4 Applied to CAS/NAS 


Problems to be solved: 
a. Improved. technical foundation for COINS security 
b.. Support for TAS user programming 


c. Increased confidence in multi-jurisdictional 
security controls 


It. is planned to implement the CAS functions under a KSOS 
system operating in the computer, supporting the TIRF. This 
development will also address the TCP4 inalenwatevinn, either 
directly or in the "torque-converter" mode of operation, 

Be Multi-Jurisdictional Security Protocols (Need-to-Know Controls) 

Problems to be solved: 

a. Need-to~Inow (disjoint compartments) 


b. Handling the large number of users (1,000-5,000): 
anticipated in the next. two to four years 


1. Approach - 
As soon a a sufficient number of CASs are deployed, | 

each participating agency will be required to register all 

of their own COINS users in a CAS system. The registration 

will be as though the user is a CAS subscriber ana will in- 

clude a description of all COINS accessible services author- 

ized for that user by the user's home agency: The registra-. 

tion will be made by (personnel under the supervision of) 

ao identified secubiey Officer of the participating agency 


(that is, the agency's ISSO). 
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: Agencies participating in COINS with (one or more) Loe 
gecver tinge: epaten that also home some or all of the user 
population of that agency will register their users of COINS 
on the. HAS used to front-end the host (s). TAS users are 
Gectercved on their TAS. Other nctwork COINS users are 
eee ereree on the COINS part of ayia 7 3 

—_ ALL registered COINS users will be known an SNI. 
SNI groups will be assigned to each participating agency 

and managed by that agency on an on-site CAS or a CAS as-~ 

- signed by the COINS PMO. 

The ISSO of the CAS in a sponsoring agency is responsible _ 
for establishing and maintaining the Server-Host/Access 
Authorization File (SH/AAF) in the CAS which identifies 
which using organizations in the COINS network or other 
networks can have access to specific files or services 
available in the CAS, the host, or network behind the CAS. 

The SH/AAF will be used to build and maintain the NSO's 
Master Authorization File (MAAF) in the Master TAS in the 
COINS PMO. The MAAF will be built and maintained on-line 
at the Master TAS sittet de cusenesiis or upon command of : 
tke NSO by retrieving a current copy of the SH/AAF from each 
CAS including the Master TAS. After the SH/AAF file has 
been received from each CAS, the MAAF is sorted by using 
organization and used by the NSO to establish the SH/AAF 


for each CAS. 
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C. BLACKER © 
. Problems to be solved: 
a.. Closed Communities of Interest (COIs) in COINS. 
b. Misroute 
c. Maltetous system software (not necessarily in COINS). 
‘The BLACKER development is directed to providing a unique 
end-to-end encryption between an individual user and a process 


on a distant host. 


The initial BLACKER system, installed in the COINS-II network 


in April, 1980, is a prototype system. The two agencies parti- 
cipating in this program are NSA and NPIC. This involves the 
installation of a special front-end device and the installation 
of a specially-designed BLACKER Terminal Access System. 
1. Users operating from a remote terminal on the BLACKER 
terminal access system will be authenticated by a COMSEC 
; system, and if properly authenticated, the user will be 
connected to the appropriate host in the network via a 
unique one-time secure communication path. Eventually, a 
badge reader must be associated with each terminal for user 
identification. The badge which is used for controlling 
‘atbews to a building and compartments within a -building 
will be used to control access to COINS-II via a remote 


terminal. 
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™~ 2. If a host misdirects an answer or response - a terminal, 
it canase be sua by the users at that terminal because | 
they will not hold the key. | 
3. For réutine purposes, the headings will be in the clear 
within a communications processor or TAS. The text will be 
encrypted and can be read only by the appropriate user/ 
terminal or system. The headers will be encrypted between 
communications systems; i.e., Ives. 
D. BLACKER lications 
System studies are required to find the best approach to 
altering tha BLACKER prototype or using the basic BLACKER crypto- 
graphic equipment to make it compatible with the COINS network 


philosophy and ultimately to integrate it into an SNFE (see E., 


- below). iecueueisn of BLACKER technology with he SNFE- is 


treated under that program element. 

The prineraet potential application of BLACKER in COINS is 
in protecting the terminal | to (CAS Link. While there is little 
“or no ‘requirement ‘for such ‘protection ‘within the ‘COINS network, 
there is a substantial requirement for terminal-to-access ring 
protection, particularly if COINS subscribers are going to be 
homed on networks about which little if anything is known. Thus, 
use of BLACKER to encrypt from a terminal (user) to the user's 
home CAS provides considerable improvement in security for re 
nals homed on other networks. BLACKER is also expected to offer 
a more economical iteoeesness secure connection than that cur- 
rently provided by the PLIs being used to link CASs through 


ARPANET. . Pree 
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e E. Secure Network Front-End . 

7 a There is a growing body of technology available to provide 
secure computing of various kinds; this includes the BLACKER 
work and KSOS. In COINS, a generalized server-host front-end 

. has been. developed around the UNIX-based TAS. This is called 
HAS. HAS houses all of the current TAS functionality and a 
host-specific interface. This provides considerable flexibility 
in how the HAS can be employed; the range is from a simple net- 
work interface (repository of network protocols) to a system | 
that interfaces both the server-hest and local terminals. to the 
network and to each other. In both modes, the HAS can (and 
does) partocn access authorization functions and in general act 
as a coarse security filter for its server-host.* 


€ In view of the broad range of functions a HAS could perform, 


. the problem of "merging features of BLACKER, KSOS, and HAS into 
a single SNFE" is substantial. 
To some extent, the plan to put TAS under KSOS will provide 
an excellent start for an SNFE. It will provide per-process 


isolation and demonstrated secure multi-level partitions. 


*It is important to note that the reason HAS or any other similar 
system cannot perform a full security filter function is because 

the detailed security decisions (e.g., access limited to a single 
file or limited to a specific set of tags) are bound into the server- 
host application (e.g., SOLIS) in a way that cannot be broken out 

to be resolved at the time access is attempted. In a similar way, 
some security determination can only be done during the execution of 
a particular query. As a consequence, the HAS or any front-end can 
only screen out organizations/individuals who are not authorized any 
access to the application. 
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The principal problem.to be solved in an SNFE design is oe 


technologies into a. system that can be used as an unintelligent 
SNFE. (i.e., one with network protocols only) but which could 
become ie have of a.more fully funetionial system such as a CAS 
by merely adding the additional. software modules. 
F. Improved. User Identification and Authentication Techniques 

Problems to be solved: | 

a. Reduce the burden of users having to learn different 

‘identification and authentication protocols for 
systems and networks in the community. 

‘While COINS has eliminated the problem of having to learn 
ay know five to eight (or more) different log on and authentica- 
tion protocols within the COINS network, the COINS approach 
does not help analysts who must use ether mecwerks and systems 
besides COINS, particularly if they do not access the systems . 
through COINS. . | 

While there is not at this time a satisfactory wmiversal 
unique personal identification method or scheme, the possible 
use of magnetic stripe badge readers (with agency identification 
badges), or some similar scheme, will be explored in conjunction 
with the BLACKER project. A cost-benefit analysis will be made 
of the schemes tested and will be used to initiate future pro- 


curement should the results be favorable. 
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G. Software Encryption in TAS/CAS 


Problems solved: 


a. Provides protection of passwords and personal. 
files from accidental disclosure 


b. Provides privacy of personal files/messages 
1. Encrypted Personal Files 

Since TAS will continue to operate in a benign environ- 
ment for the foreseeable future, the encryption of personal 
files is more to provide user-controlied privacy than for 
security purposes. As .in many aspects of system use, it 
should be possible to give the encryption capability selec~ 
tively; i.e., some users can have it as a function, others. 
cannot. | 
2. Encrypted Passwords 

The purpose of encrypted passwords is to prevent compro- 
mise of a user's TAS log-on password from. disclosure to TAS 
operations personnel. A traditional method of providing : 
this protection is to store in the user's log-on file a 
password transformed (encrypted) by a one-way function. 
Upon log on, the plain text password submitted by the user - 
is subjected to the one-way transformation and the result 
compared with that stored in the user's record. 
3. Surrogate Log-On Protection 

The requirement for surrogate log-on protection is simi- 
lar to that needed for protecting the TAS log-on password. 
It is desirable to prevent compromise from TAS operations 


personnel . 
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Unlike. the TAS log-on password, the requirement is not 


} 
| 
| 
met by a one-way transformation. A major question to be ~ a . 
addressed is whether the entire AA File record for an in- | 
dividual is to be protected or eiscias just the surrogate | 
log-on passwords for SOLIS, IDS, etc., must be protected. 
It appears at this juncture that it will only be possible 
to soetace (Cue Abesas Authorization Files (AAF) from TAS 


operations personnel if a protected cryptographic facility 


i 
| 
(e.g., BLACKER key generator or DES) were provided in the | 
TASs and each host (or CAS). To implement a scheme of 
encrypted files (AAF) while providing essentially the same 
functionality to the administrative user (to create and ~ a 
matntatn individual. users) requires a host-to-terminal and 
host-to-host secure. communications capability. The scheme 
and adaptation of the IBM key management model outlined in 
IBM Systems jedriial., Vol. 17, No. 2 of 1978, would limit 
the exposure of AAF data in a TAS. to the (single) individual 
who could set a Host Master (cryptographic) Key. This 
scheme would require both a crypto-facility (essentially a 
computer-controlled crypto-peripheral) and a KSOS foundation 
to provide adequate protection from TAS operations personnel. 
H. File Output Labeling 


Problems solved: 


a. Compliance with DCID 1/7. 
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' At. present, the. COINS network carries security labels on = - 


the responses to batch queries. The security labels are used 


only to check the authority of the terminal and/or the user to 
. receive the level of material contained in the answer. 

DCID 1/7) requires appropriate security labels to be 
applied to all classified materials. In order to comply with 
this requirement, it is necessary to provide security labels on 
all data bases and files in the COINS network. For those files 
associated with batch applications, the security labeling is 
provided by the server-host.in compliance with TMA-3. In the 
case of SOLIS, security labeling is applied on a per-message/ 
record basis. Since SOLIS did not have a batch intectace re- 


C quirement, there was no reason to implement TMA-3. With respect 


to attempting to implement proper security labeling of output 


in compliance with DCID 1/7) for COINS, it is necessary to 
recognize the fact that TMA-3 is not an integral part of the 
interactive applications. 
I. Network Access Control to COINS 

Problems solved: 

a. Increased accessibility of COINS 

b. Reduced costs for connecting subscribers © 

In general, it is assumed that the gateways will be on the 


host-to-host form (access layer) as opposed to internet level 


. gateways alone. The host-to-host form is suitable if it is 
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assumed that there is little or no requirement to provide 
end-to-end connections between subscribers homed on other net- 
works and a process on the COINS network. The proposals assume 
that a gateway-half concept ©) will be used. This form has a 
natural appeal and addresses the ownership of the gateway and 
the contained network access control mechanism properly. In 
addition, as a principle, the notion of each network providing 
its own access control makes considerable sense. 


J. Network Security Officer Support: 


a. Provide automated aids for security officer 
surveillance of network use 


Currently, System Security Officers (s$0s), in those installe- 
tions having them, get segeeaces from the computer accounting 
logs where all major normal and potentially abnormal activity 
(e.g., unsuccessful log ons) are recorded. The unsuccessful 
log ons are just about the only major information received from 
most computers, even though othe data may also be available 
(e.g., umauthorized file access attempts). Aside from the fact 
that the data recorded is not primarily for security purposes, 
the primary value of security audit logs currently derived 
from accounting data is retrospective analysis of attempts at 
external penetration. 

The basic approach to Security Exception Reporting’is to 
establish on a per-user (or per-file, application, or other 


controlled resource) basis a "profile" that characterizes 


D-28 


Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


: i ees ‘ eee ee cee it 


fa ses 


3 . Approved For Release 2003/08/18 : CIA-RDP83T00573R000100140001-8 


} 


against actual use of a resource to determine whether any user 
activity is “out-of-range" with respect to the profile. Such 
out-of-range. activity can. be reported as an exception requiring 


further investigation, or it can be the basis for detailed 


| 
H 
"normal" use of the resource. The. profile can then. be matched od 
! 
i 
| 
i 
| 
t 
{ 


analysis of users' actions to determine whether the activity 

is authorized. a: 
A prototype system exists on a commercial network that could 1 

be the basis for a similar system for COINS. Development of | 

such a system will require much of the access ring in place to 

be effective. | 

K. Network Security Architecture 


C 7 _ Problems solved: oe en al che es te i 
| - a. Continued long-range security planning 
b. Identification of network security needs. 


Ca Tracking of security developments for 
application to the COINS network 


ee the history of COINS, there has been a requirement 
~ for a continued, long-term planning and study activity concerned 
with COINS security issues. ; - 
A single, continuing task is involved to continue to survey 
the security needs of the network and make recommendations for 


the solution of security problems uncovered. 
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early investigations will begin in 1981. System studies, a 


integrating the results of the BLACKER evaluation and the re- 
quirements for internetworking will identify the best way of 


using BLACKER in COINS and suggested system alteration for 


OTE fais mie ‘ue Eade, & : 


E. Secure Network Front-End 

No work has been initiated on this project, 

F. User Identification and Authentication Techniques 

The identification of a badge reader systen has been made 

and it. is expected that a reader will be acquired by early 

FY 1981 to integrate with the BLACKER test. The utility of the 
badge reader as an improvement in user identification and authen- 
tication will be evaluated, 

G. Software Encryption in TAS/CAS 

No work has been done on encrypted nevacias files to date. 
The application of the Crypt function of UNIX7 will be seal dates 
in this role. 

No work has been done to implement encrypted passwords in 
COINS to date. It requires the development of an pratt 
"one-way" transformation, and its integration in the log-on 
process. Some work has been done on this process in untx 20) | 

Due to the uncertainties of BLACKER and KSOS deployment in | 
COINS, no work is planned. for dealing with surrogate log-on 


protection at this time. 
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H. File Output Labeling 


‘In order. to determine the most effective, minimum-cost 
solution to this particular problem, it will be necessary to 
establish network standards for labeling of output. Standards 
already exist in TMA-3 but these will have to be updated and 
possibly modified to accommodate systems that are intrinsically 
interactive but which may be treated as though they are batch. 
No work has been done on this task to date. 

I. Network Access Control to COINS 

At present, a tailored gateway to ARPANET is provided to 
interface the PACOM TAS. A "one-way" tailored gateway from 
PLATFORM to COINS is also pelde developed. 

i A generalized gateway to COINS is planned using the concept 
(16) The development of 
the generalized gateway will focus on what kind and how much 
functionality to put into the gateway (e.g., security functions, 
register users, etc.). 

J. NSO Support 

There is no current development to support the NSO. Aspects 
of operating as the NSO and TASMASTER are being explored as 
part of a general TAS upgrade effort. 

The security surveillance system and monitoring tools will 
be cefined and evaluated starting FY 1982. The entire develop- 


ment should be complete by the end of FY 1984. 
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C _K. Network Security Architecture - — =. | 


This function is currently being performed by one of the 


COINS PMO contractors in association with the NSO. It is planned 

to continue this function as Jong as the network requires it. 
VII. RESOURCES AND SCHEDULE | 

The following tables show the funds budgeted, programmed or 


planned to procure, develop, implement, and maintain the hardware 


A.  KSOS/TCP4 


| 
and software for COINS network security. : ‘ 
H 
{ 


FY81 


Lae aes 


1000 of Dollars. 


FY86 


O&M 


Procurement 


The RDT&E Funds for 1980 are for the impact study. Funds 
for FY81-82 are for partitioning of the TAS functions and for 
integrating KSOS and TAS. The FY83 funding is to evaluate the 


cost benefits of using the KSOS/TCP4 combination in COINS. 
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B. Multi~-Jurisdictional Security Protocols 


FY81 FY86 


ps toe |e 


1000 of Dollars 


O&M 


Procurement 


The RDT&E funds. for FY83-84 are to develop and install the 
software that collects the individual CASs, AAFs, and redistrib~ 


ene utes the sorted access authorizations to all access ving systems. 


\ 


ee tag a Rtas te ith See he eS Se oe at 


O&M 


Procurement 


1000 of Dollars ~ 


The RDT&E funds in FY80 through FY82 are to test the opera- 
tion and user acceptance of BLACKER. The procurement funds are 


to acquire another BLACKER front-end for SOLIS and additional 


- personal identification and authentication hardware. 
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Leen eee 


1000 of Dollars © 


FY81 


O&M 


Procurement 


RDT&E 


The RDT&E funds over FY81-83 are for studies on how best 


to use or adapt BLACKER for COINS use. 


E. Secure Network Front-End 


O&M 


Procurement 


1000 of Dollars 


The FY83 RDT&E funds are for the development of comprehen- 
sive specifications for a front-end suitable for use in the 
several networks expected to be available in the mid- to late 
1980's. A portion of the FY83 funds is expected to be used to 


identify a suitable candidate hardware to implement the result. 
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During -FY84, thé RDT&E emphasis. will be. pe senate and | 2 - 
specifications. for partitioning the front-end functions and oy he a 
integrating BLACKER and KSOS. The funds for FY85 and FY86 | | 
ae for the development of a prototype for demonstration and 

evaluation. An undetermined amount of funds for procuring 

a suitable hardware base for the development will be required 


in FY84 and FY85. 


F. Improved User Identification and Authentication 


Fy81 FY86 


O&M 


Procurement 


1000 of Dollars’ 


The procurement funds for FY80 are for a suitable badge 
reader. The RDT&E funds for FY81 are for interfacing it with ” 
BLACKER terminals. The balance of the RDT&E funds (FY82-86) 
are for evaluation and low-level tracking of new technology 


applicable to the problem. 
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G. Software Encryption. , 5 e: tee sae 


FY86 


FY81 


O&M 


Procurement 


1000 of Dollars 


The RDT&E funds in FY81 are for the testing and additional 
development of the Crypt function in UNIX7 and the one-way 


encryption algorithm(s) for application to log-on protection. 


H. File Qutput Labeling 


ESze Eas 


1000 of Dollars 


FY81 


- O&M 


Procurement 


The FY81 RDT&E funds are for the system study of where the 
file output labeling is most effectively done (for all of the 
various possibilities in COINS) and a design of how to do it. 


In FY82 and 83, the design will be implemented and tested. 
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& I... Network Access Control to COINS = = 


O&M 


_ Procurement 


1000 of Dollars 


The FY82 RDTSE funds are for a detailed design of a gener- 
alized gateway suitable for use with PLATFORM, IDHSC, AUTODIN II, 
etc. The FY83 and 84 RDT&E funds are for the implementation 
and test of the design. The procurement funds are for the 


acquisition of a suitable gateway machine. 


J. ° NSO Support 


O&M 


Procurement 


1000 of Dollars 


The RDT&E funds for FY82 through FY84 are to establish 


the “<etailed requirements for an NSO monitoring and surveillance 
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system. Implement and test the. system. The O&M funds, FYB4 


pene FY86, are for the devélopsient of additional NSO tools 


assist in the security monitoring of the network and its use. 


- O&M 


Procurement 


1000 of Dollars 


4 ‘The RDT&E ‘funds shown are to provide continued contractor 


support over the period shown. 


SUMMARY OF COSTS 


Procurement 
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"SCHEDULE 


' - PROGRAM ELEMENT | evao | Fvst | 


FY81 
KSOS/TCP4 » « aa 
Multi-Jurisdictional 
Security Control 


é 


BLACKER Test 


BLACKER 
Applications 


SNFE 


Improved User ID & 
Authentication Techniques 


TAS/NAS Software 
Encryption 


File/Output. 
Labeling 


Gateway Design 
(Network Access) 


Network Security 
Officer Support 


Architecture 


10.. 


ll. 


12. 


13.. 


14. 


15. 
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TMA-3 - 1971, "Dissemination Controls. for COINS", April 1, 1971, 
COINS PMO. 


DCID 1/16 - Security of Foreign Intelligence in Automated Data 
Processing Systems and Networks, June 6, 1978. : 


Security Markings ~ DCID 1/7 - Control of Dissemination of 
Foreign Intelligence, May 11, 1976. 


Security - DCID 1/14 ~ Minimum Personnel Security Standards and 
Procedures Governing Eligibility for Access to Sensitive Com- 
partmented Information, May 13, 1976. 

Privacy - Executive Order. 12036. 


COMSEC - WSCSB 4-11 -- National Policy on Control of Compromising 
Emanations, June 1, 1976. 


TAS Fumctional Specifications and User Command Language, 
J.P. Anderson Company, November 25, 1976. 


Terminal. Access System, User's Manual, Logicon, Inc., 1979. 


‘Terminal. Access System, Access Authorization File Maintenance 


(AAFM) User's Manual, Logicon, Inc., 1979. 

"Password Security: A Case History", Morris, R., Thompson, K., 
Communications of the ACM, Vol 22, No. 11, November 1979, 

pp. 594-597. 

COINS Network Security Issues, J.P. Anderson Company, July 31, 1976. 


COINS-II Security Problems, Analysis and Implications, 
J.P. Anderson Company, March 7, 1978 (revised November, 1978). 


Problems Associated with Accommodating Interactive Hosts in 
COINS-II (Interim Draft), ICA Corp., February 26, 1979. 


Uniform Network Interactive Logon Sequence, Memorandum for the 
Record, R.A. Parke, January 19, 1978. 


ADAPT I Final Functional and System Design Specification, 
Logicon, Inc., January 30, 1978. 
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17. 


18. 


19. 


20. 


21. 


oN 
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“Gateway Techniques for. Interconnection of Digital Networks", 
(draft) Report No.. CSC-SD-77/4132, Computer Sciences Corporation, 
December 16, 1977. . ce . . ; 
"Techniques for Gateway PLATFORM with Other Digital Networks", 
(draft) Final Report, Contract MDA904-77-A400182, System Control 
Inc., December, 1977. 


COINS-II: Which Way to Mecca?, J.P. Anderson Company, 
November 21, 1978. 


USIB 9.1/20 - Physical. Security Standards for Sensitive Compart~- 
mented Information. 


"Management of the COINS Experiment” 


"Recommendations of the ASD(I)'s Review Group", February, 1973. 
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